Path Traversal Vulnerability in Symantec Messaging Gateway
CVE-2017-15532
5.7MEDIUM
What is CVE-2017-15532?
Symantec Messaging Gateway, prior to version 10.6.4, is vulnerable to a path traversal attack that allows an attacker to access files and directories outside the web root folder. By exploiting improperly handled input variables, an attacker can navigate the file system and gain unauthorized access to sensitive information, including application source code and configuration files, potentially leading to further compromise.
Affected Version(s)
Messaging Gateway Prior to 10.6.4