← back
CVE-2016-10258

CVE-2016-10258

EPSS 4.9%
Unrestricted file upload vulnerability in the Symantec Advanced Secure Gateway (ASG) and ProxySG management consoles. A malicious appliance administrator can upload arbitrary malicious files to the management console and trick another administrator user into downloading and executing malicious code.
Affected products
Symantec Corporation · Advanced Secure Gateway (ASG)Symantec Corporation · ProxySG
public PoCs found1
exploitdbwww.exploit-db.com/exploits/47392unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.symantec.com/security-center/network-protection-security-advisories/SA162http://www.securityfocus.com/bid/103685http://www.securitytracker.com/id/1040757