CVE-2015-5690

Currently unrated

Key Information:

Vendor: Symantec
Status: Web Gateway
Vendor: CVE Published:; 20 September 2015

Summary

The management console on Symantec Web Gateway (SWG) appliances with software before 5.2.2 DB 5.0.0.1277 allows remote authenticated users to bypass intended access restrictions and execute arbitrary commands by leveraging a "redirect."

References

http://www.securitytracker.com/id/1033625

vdb-entryx_refsource_SECTRACK

http://www.securityfocus.com/bid/76725

vdb-entryx_refsource_BID

http://www.zerodayinitiative.com/advisories/ZDI-15-444/

x_refsource_MISC

Timeline

Vulnerability published
Sep 20, 2015
Vulnerability Reserved
Jul 28, 2015