The management console on the Symantec Web Gateway (SWG) appliance before 5.1.1 allows remote attackers to execute arbitrary commands by injecting a command into an application script.
References
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2013-08-01 06:32
Updated : 2014-01-16 21:13
NVD link : CVE-2013-1616
Mitre link : CVE-2013-1616
JSON object : View
CWE
CWE-78
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Products Affected
symantec
- web_gateway_appliance_8490
- web_gateway
- web_gateway_appliance_8450