CVE-2017-6327
CVE-2017-6327
In short
Symantec Messaging Gateway versions before 10.6.3-267 allow attackers to run commands remotely on the server. This is dangerous because once they gain access, they can control the system and steal or damage data.
Technical detail
Remote code execution vulnerability in Symantec Messaging Gateway due to improper input validation (CWE-77). Unauthenticated or low-privileged attackers can execute arbitrary commands on the affected system. Post-exploitation privilege escalation may be possible to gain full system control.
Summary generated and translated by AI from the official description.
The Symantec Messaging Gateway before 10.6.3-267 can encounter an issue of remote code execution, which describes a situation whereby an individual may obtain the ability to execute commands remotely on a target machine or in a target process. In this type of occurrence, after gaining access to the system, the attacker may attempt to elevate their privileges.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected products
Symantec Corporation · Messaging Gatewaypublic PoCs found — 2
cve_referencewww.exploit-db.com/exploits/42519/unverifiedexploitdbwww.exploit-db.com/exploits/42519unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://seclists.org/fulldisclosure/2017/Aug/28https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2017-6327https://www.exploit-db.com/exploits/42519/https://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20170810_00http://www.securityfocus.com/bid/100135