HTTP: Symantec Web Gateway ipchange.php Command Injection
This signature detects attempts to exploit a known command injection vulnerability in Symantec Web Gateway. It is due to improper input filtering. In a successful code injection attack, the behavior of the target host is entirely dependent on the intended function of the injected code and executes within the security context of the process.
Extended Description
Symantec Web Gateway is prone to a vulnerability that can allow an attacker to execute arbitrary commands. Successful exploits will result in the execution of arbitrary attack-supplied commands in the context of the affected application.
Affected Products
Symantec web_gateway
Short Name
HTTP:PHP:SYM-WG-IPCHANG
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2012-0297 Command Gateway Injection Symantec Web bid:53444 ipchange.php
Release Date
06/25/2012
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Symantec
CVSS Score
10.0