var-201406-0071
Vulnerability from variot
SNMPConfig.php in the management console in Symantec Web Gateway (SWG) before 5.2.1 allows remote attackers to execute arbitrary commands via unspecified vectors. Supplementary information : CWE Vulnerability type by CWE-77: Improper Neutralization of Special Elements used in a Command ( Command injection ) Has been identified. http://cwe.mitre.org/data/definitions/77.htmlAn arbitrary command may be executed by a third party. Authentication is required to exploit this vulnerability.The specific flaws exist within the user.php and snmpConfig.php files. SQL injection and command injection is possible through vulnerable request parameters. An attacker can leverage these vulnerabilities to read files and achieve remote code execution under the context of the root user. Successful exploits will result in the execution of arbitrary commands with elevated privileges in the context of the affected appliance. The software provides web content filtering, data loss prevention, and more
Show details on source website{
"affected_products": {
"_id": null,
"data": [
{
"_id": null,
"model": "web gateway",
"scope": "lte",
"trust": 1.0,
"vendor": "symantec",
"version": "5.2"
},
{
"_id": null,
"model": "web gateway",
"scope": "lt",
"trust": 0.8,
"vendor": "symantec",
"version": "5.2.1"
},
{
"_id": null,
"model": "web gateway",
"scope": null,
"trust": 0.7,
"vendor": "symantec",
"version": null
},
{
"_id": null,
"model": "web gateway",
"scope": "eq",
"trust": 0.6,
"vendor": "symantec",
"version": "5.2"
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-14-211"
},
{
"db": "JVNDB",
"id": "JVNDB-2013-006598"
},
{
"db": "CNNVD",
"id": "CNNVD-201406-427"
},
{
"db": "NVD",
"id": "CVE-2013-5017"
}
]
},
"configurations": {
"_id": null,
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"cpe_match": [
{
"cpe22Uri": "cpe:/a:symantec:web_gateway",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2013-006598"
}
]
},
"credits": {
"_id": null,
"data": "Brandon Perry",
"sources": [
{
"db": "ZDI",
"id": "ZDI-14-211"
}
],
"trust": 0.7
},
"cve": "CVE-2013-5017",
"cvss": {
"_id": null,
"data": [
{
"cvssV2": [
{
"accessComplexity": "MEDIUM",
"accessVector": "ADJACENT_NETWORK",
"authentication": "NONE",
"author": "nvd@nist.gov",
"availabilityImpact": "COMPLETE",
"baseScore": 7.9,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 5.5,
"id": "CVE-2013-5017",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "HIGH",
"trust": 1.8,
"vectorString": "AV:A/AC:M/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
{
"acInsufInfo": null,
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"author": "ZDI",
"availabilityImpact": "NONE",
"baseScore": 7.9,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 6.8,
"id": "CVE-2013-5017",
"impactScore": 9.2,
"integrityImpact": "COMPLETE",
"obtainAllPrivilege": null,
"obtainOtherPrivilege": null,
"obtainUserPrivilege": null,
"severity": "HIGH",
"trust": 0.7,
"userInteractionRequired": null,
"vectorString": "AV:N/AC:M/Au:S/C:C/I:C/A:N",
"version": "2.0"
},
{
"accessComplexity": "MEDIUM",
"accessVector": "ADJACENT_NETWORK",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "COMPLETE",
"baseScore": 7.9,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 5.5,
"id": "VHN-65019",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "HIGH",
"trust": 0.1,
"vectorString": "AV:A/AC:M/AU:N/C:C/I:C/A:C",
"version": "2.0"
}
],
"cvssV3": [
{
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"author": "nvd@nist.gov",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"exploitabilityScore": 3.9,
"id": "CVE-2013-5017",
"impactScore": 5.9,
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"trust": 1.0,
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
}
],
"severity": [
{
"author": "nvd@nist.gov",
"id": "CVE-2013-5017",
"trust": 1.0,
"value": "CRITICAL"
},
{
"author": "NVD",
"id": "CVE-2013-5017",
"trust": 0.8,
"value": "High"
},
{
"author": "ZDI",
"id": "CVE-2013-5017",
"trust": 0.7,
"value": "HIGH"
},
{
"author": "CNNVD",
"id": "CNNVD-201406-427",
"trust": 0.6,
"value": "HIGH"
},
{
"author": "VULHUB",
"id": "VHN-65019",
"trust": 0.1,
"value": "HIGH"
}
]
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-14-211"
},
{
"db": "VULHUB",
"id": "VHN-65019"
},
{
"db": "JVNDB",
"id": "JVNDB-2013-006598"
},
{
"db": "CNNVD",
"id": "CNNVD-201406-427"
},
{
"db": "NVD",
"id": "CVE-2013-5017"
}
]
},
"description": {
"_id": null,
"data": "SNMPConfig.php in the management console in Symantec Web Gateway (SWG) before 5.2.1 allows remote attackers to execute arbitrary commands via unspecified vectors. Supplementary information : CWE Vulnerability type by CWE-77: Improper Neutralization of Special Elements used in a Command ( Command injection ) Has been identified. http://cwe.mitre.org/data/definitions/77.htmlAn arbitrary command may be executed by a third party. Authentication is required to exploit this vulnerability.The specific flaws exist within the user.php and snmpConfig.php files. SQL injection and command injection is possible through vulnerable request parameters. An attacker can leverage these vulnerabilities to read files and achieve remote code execution under the context of the root user. \nSuccessful exploits will result in the execution of arbitrary commands with elevated privileges in the context of the affected appliance. The software provides web content filtering, data loss prevention, and more",
"sources": [
{
"db": "NVD",
"id": "CVE-2013-5017"
},
{
"db": "JVNDB",
"id": "JVNDB-2013-006598"
},
{
"db": "ZDI",
"id": "ZDI-14-211"
},
{
"db": "BID",
"id": "67752"
},
{
"db": "VULHUB",
"id": "VHN-65019"
}
],
"trust": 2.61
},
"external_ids": {
"_id": null,
"data": [
{
"db": "NVD",
"id": "CVE-2013-5017",
"trust": 3.5
},
{
"db": "BID",
"id": "67752",
"trust": 2.0
},
{
"db": "SECTRACK",
"id": "1030443",
"trust": 1.1
},
{
"db": "JVNDB",
"id": "JVNDB-2013-006598",
"trust": 0.8
},
{
"db": "ZDI_CAN",
"id": "ZDI-CAN-2047",
"trust": 0.7
},
{
"db": "ZDI",
"id": "ZDI-14-211",
"trust": 0.7
},
{
"db": "CNNVD",
"id": "CNNVD-201406-427",
"trust": 0.7
},
{
"db": "VULHUB",
"id": "VHN-65019",
"trust": 0.1
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-14-211"
},
{
"db": "VULHUB",
"id": "VHN-65019"
},
{
"db": "BID",
"id": "67752"
},
{
"db": "JVNDB",
"id": "JVNDB-2013-006598"
},
{
"db": "CNNVD",
"id": "CNNVD-201406-427"
},
{
"db": "NVD",
"id": "CVE-2013-5017"
}
]
},
"id": "VAR-201406-0071",
"iot": {
"_id": null,
"data": true,
"sources": [
{
"db": "VULHUB",
"id": "VHN-65019"
}
],
"trust": 0.01
},
"last_update_date": "2024-11-23T21:45:09.911000Z",
"patch": {
"_id": null,
"data": [
{
"title": "SYM14-010",
"trust": 0.8,
"url": "http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026pvid=security_advisory\u0026year=2014\u0026suid=20140616_00"
},
{
"title": "SYM14-010",
"trust": 0.8,
"url": "http://www.symantec.com/ja/jp/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026pvid=security_advisory\u0026year=\u0026suid=20140616_00"
},
{
"title": "Symantec has issued an update to correct this vulnerability.",
"trust": 0.7,
"url": "http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026pvid=security_advisory\u0026year=\u0026suid=20140616_00"
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-14-211"
},
{
"db": "JVNDB",
"id": "JVNDB-2013-006598"
}
]
},
"problemtype_data": {
"_id": null,
"data": [
{
"problemtype": "NVD-CWE-noinfo",
"trust": 1.0
},
{
"problemtype": "CWE-Other",
"trust": 0.8
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2013-006598"
},
{
"db": "NVD",
"id": "CVE-2013-5017"
}
]
},
"references": {
"_id": null,
"data": [
{
"trust": 1.7,
"url": "http://www.securityfocus.com/bid/67752"
},
{
"trust": 1.6,
"url": "http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026pvid=security_advisory\u0026year=2014\u0026suid=20140616_00"
},
{
"trust": 1.1,
"url": "http://www.securitytracker.com/id/1030443"
},
{
"trust": 1.0,
"url": "http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=securit%20y_advisory\u0026pvid=security_advisory\u0026year=\u0026suid=20140616_00"
},
{
"trust": 0.8,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-5017"
},
{
"trust": 0.8,
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2013-5017"
},
{
"trust": 0.7,
"url": "http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026pvid=security_advisory\u0026year=\u0026suid=20140616_00"
},
{
"trust": 0.3,
"url": "http://www.symantec.com/business/web-gateway"
},
{
"trust": 0.1,
"url": "http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=securit%20y_advisory\u0026amp;pvid=security_advisory\u0026amp;year=\u0026amp;suid=20140616_00"
},
{
"trust": 0.1,
"url": "http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026amp;pvid=security_advisory\u0026amp;year=2014\u0026amp;suid=20140616_00"
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-14-211"
},
{
"db": "VULHUB",
"id": "VHN-65019"
},
{
"db": "BID",
"id": "67752"
},
{
"db": "JVNDB",
"id": "JVNDB-2013-006598"
},
{
"db": "CNNVD",
"id": "CNNVD-201406-427"
},
{
"db": "NVD",
"id": "CVE-2013-5017"
}
]
},
"sources": {
"_id": null,
"data": [
{
"db": "ZDI",
"id": "ZDI-14-211",
"ident": null
},
{
"db": "VULHUB",
"id": "VHN-65019",
"ident": null
},
{
"db": "BID",
"id": "67752",
"ident": null
},
{
"db": "JVNDB",
"id": "JVNDB-2013-006598",
"ident": null
},
{
"db": "CNNVD",
"id": "CNNVD-201406-427",
"ident": null
},
{
"db": "NVD",
"id": "CVE-2013-5017",
"ident": null
}
]
},
"sources_release_date": {
"_id": null,
"data": [
{
"date": "2014-06-18T00:00:00",
"db": "ZDI",
"id": "ZDI-14-211",
"ident": null
},
{
"date": "2014-06-18T00:00:00",
"db": "VULHUB",
"id": "VHN-65019",
"ident": null
},
{
"date": "2014-06-16T00:00:00",
"db": "BID",
"id": "67752",
"ident": null
},
{
"date": "2014-06-23T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2013-006598",
"ident": null
},
{
"date": "2014-06-20T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201406-427",
"ident": null
},
{
"date": "2014-06-18T19:55:04.420000",
"db": "NVD",
"id": "CVE-2013-5017",
"ident": null
}
]
},
"sources_update_date": {
"_id": null,
"data": [
{
"date": "2014-06-18T00:00:00",
"db": "ZDI",
"id": "ZDI-14-211",
"ident": null
},
{
"date": "2017-12-28T00:00:00",
"db": "VULHUB",
"id": "VHN-65019",
"ident": null
},
{
"date": "2014-06-18T17:45:00",
"db": "BID",
"id": "67752",
"ident": null
},
{
"date": "2014-06-23T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2013-006598",
"ident": null
},
{
"date": "2014-06-20T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201406-427",
"ident": null
},
{
"date": "2024-11-21T01:56:54.350000",
"db": "NVD",
"id": "CVE-2013-5017",
"ident": null
}
]
},
"threat_type": {
"_id": null,
"data": "specific network environment",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201406-427"
}
],
"trust": 0.6
},
"title": {
"_id": null,
"data": "Symantec Web Gateway Management console SNMPConfig.php Vulnerable to arbitrary command execution",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2013-006598"
}
],
"trust": 0.8
},
"type": {
"_id": null,
"data": "code injection",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201406-427"
}
],
"trust": 0.6
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…