Symantec Web Gateway < 5.0.3 Multiple Vulnerabilities (SYM12-006) (version check)

NASLDB: Symantec Web Gateway < 5.0.3 Multiple Vulnerabilities (SYM12-006) (version check)

General

ID: 59209
Name: Symantec Web Gateway < 5.0.3 Multiple Vulnerabilities (SYM12-006) (version check)

Summary: Checks SWG version

Credits: Tenable Network Security, Inc.

Classification

Risk: –

CVSS: –
CVSS Base Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
CVSS Temporal Vector: CVSS2#E:F/RL:OF/RC:C

Port: 443
Family: CGI abuses
Type: Remote

Description

According to its self-reported version number, the remote web server
is hosting Symantec Web Gateway before version 5.0.3, which has the
following vulnerabilities :

-There are multiple cross-site scripting vulnerabilities.
(CVE-2012-0296)

– Multiple shell command injection and local file inclusion
vulnerabilities exist that could lead to arbitrary code
execution. (CVE-2012-0297)

– Unauthenticated users are allowed to read/delete arbitrary
files as root. (CVE-2012-0298)

– A file upload vulnerability exists that could lead to
arbitrary code execution. (CVE-2012-0299)

A remote, unauthenticated attacker could exploit the code execution
vulnerabilities to execute commands as the apache user. After
exploitation, obtaining a root shell is trivial.