CVE-2018-5241

9.8CRITICAL

Key Information:

Vendor
Symantec Corporation
Status
Advanced Secure Gateway (asg)
Proxysg
Vendor
CVE Published:
29 May 2018

Summary

Symantec Advanced Secure Gateway (ASG) 6.6 and 6.7, and ProxySG 6.5, 6.6, and 6.7 are susceptible to a SAML authentication bypass vulnerability. The products can be configured with a SAML authentication realm to authenticate network users in intercepted proxy traffic. When parsing SAML responses, ASG and ProxySG incorrectly handle XML nodes with comments. A remote attacker can modify a valid SAML response without invalidating its cryptographic signature. This may allow the attacker to bypass user authentication security controls in ASG and ProxySG. This vulnerability only affects authentication of network users in intercepted traffic. It does not affect administrator user authentication for the ASG and ProxySG management consoles.

Affected Version(s)

Advanced Secure Gateway (ASG) 6.6

Advanced Secure Gateway (ASG) 6.7

ProxySG 6.5

References

https://www.symantec.com/security-center/network-protecti...
x_refsource_CONFIRM
http://www.securitytracker.com/id/1040993
vdb-entryx_refsource_SECTRACK
http://www.securityfocus.com/bid/104282
vdb-entryx_refsource_BID

CVSS V3.1

Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.