53442

http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2012&suid=20120517_00

symantec-web-file-download(75732)

According to its self-reported version number, the remote web server is hosting Symantec Web Gateway before version 5.0.3, which has the following vulnerabilities :

  -There are multiple cross-site scripting vulnerabilities.
   (CVE-2012-0296)

  - Multiple shell command injection and local file inclusion     vulnerabilities exist that could lead to arbitrary code     execution. (CVE-2012-0297)

  - Unauthenticated users are allowed to read/delete arbitrary     files as root. (CVE-2012-0298)

  - A file upload vulnerability exists that could lead to     arbitrary code execution. (CVE-2012-0299)

A remote, unauthenticated attacker could exploit the code execution vulnerabilities to execute commands as the apache user.  After exploitation, obtaining a root shell is trivial.

CVE-2012-0298

MEDIUM

Description

References

Details

Risk Information

CVSS v2.0

Vulnerable Software

Configuration 1

Tenable Plugins

critical