Remote Password Manipulation Vulnerability in Symantec Web Gateway
CVE-2012-2977

Currently unrated

Key Information:

Vendor

Symantec
Status
Web Gateway
Vendor
CVE Published:
23 July 2012

What is CVE-2012-2977?

The management console in Symantec Web Gateway versions prior to 5.0.3.18 is susceptible to a vulnerability that allows remote attackers to modify user passwords through specially crafted input sent to an application script. This weakness can be exploited to gain unauthorized access and control over the affected system, potentially leading to further security breaches.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.symantec.com/security_response/securityupdates...
x_refsource_CONFIRM
http://www.kb.cert.org/vuls/id/108471
third-party-advisoryx_refsource_CERT-VN
http://www.securityfocus.com/bid/54430
vdb-entryx_refsource_BID

EPSS Score

17% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.