HTTP: Symantec Web Gateway pbcontrol.php Command Injection
This signature detects attempts to exploit a known command injection vulnerability in the Symantec Web Gateway. It is due to the insufficient validation of user-supplied input. In a successful code injection attack, the behavior of the target host is entirely dependent on the intended function of the injected code and executes within the security context of the process.
Extended Description
Symantec Web Gateway is prone to a vulnerability that can allow an attacker to execute arbitrary commands. Successful exploits will result in the execution of arbitrary attack-supplied commands in the context of the affected application. Symantec Web Gateway versions 5.0.x.x are vulnerable.
Affected Products
Symantec web_gateway
References
BugTraq: 54426
CVE: CVE-2012-2953
URL: http://www.symantec.com/business/web-gateway http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2012&suid=20120720_00 http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&suid=20120720_00
Short Name
APP:SYMC:WG-PBCONTROL
Severity
Critical
Recommended
False
Recommended Action
Drop
Category
APP
Keywords
CVE-2012-2953 Command Gateway Injection Symantec Web bid:54426 pbcontrol.php
Release Date
08/01/2012
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Symantec
CVSS Score
10.0