VAR-201406-0071
Vulnerability from variot - Updated: 2025-04-13 23:22SNMPConfig.php in the management console in Symantec Web Gateway (SWG) before 5.2.1 allows remote attackers to execute arbitrary commands via unspecified vectors. Supplementary information : CWE Vulnerability type by CWE-77: Improper Neutralization of Special Elements used in a Command ( Command injection ) Has been identified. http://cwe.mitre.org/data/definitions/77.htmlAn arbitrary command may be executed by a third party. Authentication is required to exploit this vulnerability.The specific flaws exist within the user.php and snmpConfig.php files. SQL injection and command injection is possible through vulnerable request parameters. An attacker can leverage these vulnerabilities to read files and achieve remote code execution under the context of the root user. Successful exploits will result in the execution of arbitrary commands with elevated privileges in the context of the affected appliance. The software provides web content filtering, data loss prevention, and more
Show details on source website{
"affected_products": {
"_id": null,
"data": [
{
"_id": null,
"model": "web gateway",
"scope": "lte",
"trust": 1.0,
"vendor": "symantec",
"version": "5.2"
},
{
"_id": null,
"model": "web gateway",
"scope": "lt",
"trust": 0.8,
"vendor": "symantec",
"version": "5.2.1"
},
{
"_id": null,
"model": "web gateway",
"scope": null,
"trust": 0.7,
"vendor": "symantec",
"version": null
},
{
"_id": null,
"model": "web gateway",
"scope": "eq",
"trust": 0.6,
"vendor": "symantec",
"version": "5.2"
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-14-211"
},
{
"db": "JVNDB",
"id": "JVNDB-2013-006598"
},
{
"db": "CNNVD",
"id": "CNNVD-201406-427"
},
{
"db": "NVD",
"id": "CVE-2013-5017"
}
]
},
"configurations": {
"_id": null,
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"cpe_match": [
{
"cpe22Uri": "cpe:/a:symantec:web_gateway",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2013-006598"
}
]
},
"credits": {
"_id": null,
"data": "Brandon Perry",
"sources": [
{
"db": "ZDI",
"id": "ZDI-14-211"
}
],
"trust": 0.7
},
"cve": "CVE-2013-5017",
"cvss": {
"_id": null,
"data": [
{
"cvssV2": [
{
"accessComplexity": "MEDIUM",
"accessVector": "ADJACENT_NETWORK",
"authentication": "NONE",
"author": "nvd@nist.gov",
"availabilityImpact": "COMPLETE",
"baseScore": 7.9,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 5.5,
"id": "CVE-2013-5017",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "HIGH",
"trust": 1.8,
"vectorString": "AV:A/AC:M/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
{
"acInsufInfo": null,
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"author": "ZDI",
"availabilityImpact": "NONE",
"baseScore": 7.9,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 6.8,
"id": "CVE-2013-5017",
"impactScore": 9.2,
"integrityImpact": "COMPLETE",
"obtainAllPrivilege": null,
"obtainOtherPrivilege": null,
"obtainUserPrivilege": null,
"severity": "HIGH",
"trust": 0.7,
"userInteractionRequired": null,
"vectorString": "AV:N/AC:M/Au:S/C:C/I:C/A:N",
"version": "2.0"
},
{
"accessComplexity": "MEDIUM",
"accessVector": "ADJACENT_NETWORK",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "COMPLETE",
"baseScore": 7.9,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 5.5,
"id": "VHN-65019",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "HIGH",
"trust": 0.1,
"vectorString": "AV:A/AC:M/AU:N/C:C/I:C/A:C",
"version": "2.0"
}
],
"cvssV3": [
{
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"author": "nvd@nist.gov",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"exploitabilityScore": 3.9,
"id": "CVE-2013-5017",
"impactScore": 5.9,
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"trust": 1.0,
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
}
],
"severity": [
{
"author": "nvd@nist.gov",
"id": "CVE-2013-5017",
"trust": 1.0,
"value": "CRITICAL"
},
{
"author": "NVD",
"id": "CVE-2013-5017",
"trust": 0.8,
"value": "High"
},
{
"author": "ZDI",
"id": "CVE-2013-5017",
"trust": 0.7,
"value": "HIGH"
},
{
"author": "CNNVD",
"id": "CNNVD-201406-427",
"trust": 0.6,
"value": "HIGH"
},
{
"author": "VULHUB",
"id": "VHN-65019",
"trust": 0.1,
"value": "HIGH"
}
]
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-14-211"
},
{
"db": "VULHUB",
"id": "VHN-65019"
},
{
"db": "JVNDB",
"id": "JVNDB-2013-006598"
},
{
"db": "CNNVD",
"id": "CNNVD-201406-427"
},
{
"db": "NVD",
"id": "CVE-2013-5017"
}
]
},
"description": {
"_id": null,
"data": "SNMPConfig.php in the management console in Symantec Web Gateway (SWG) before 5.2.1 allows remote attackers to execute arbitrary commands via unspecified vectors. Supplementary information : CWE Vulnerability type by CWE-77: Improper Neutralization of Special Elements used in a Command ( Command injection ) Has been identified. http://cwe.mitre.org/data/definitions/77.htmlAn arbitrary command may be executed by a third party. Authentication is required to exploit this vulnerability.The specific flaws exist within the user.php and snmpConfig.php files. SQL injection and command injection is possible through vulnerable request parameters. An attacker can leverage these vulnerabilities to read files and achieve remote code execution under the context of the root user. \nSuccessful exploits will result in the execution of arbitrary commands with elevated privileges in the context of the affected appliance. The software provides web content filtering, data loss prevention, and more",
"sources": [
{
"db": "NVD",
"id": "CVE-2013-5017"
},
{
"db": "JVNDB",
"id": "JVNDB-2013-006598"
},
{
"db": "ZDI",
"id": "ZDI-14-211"
},
{
"db": "BID",
"id": "67752"
},
{
"db": "VULHUB",
"id": "VHN-65019"
}
],
"trust": 2.61
},
"external_ids": {
"_id": null,
"data": [
{
"db": "NVD",
"id": "CVE-2013-5017",
"trust": 3.5
},
{
"db": "BID",
"id": "67752",
"trust": 2.0
},
{
"db": "SECTRACK",
"id": "1030443",
"trust": 1.1
},
{
"db": "JVNDB",
"id": "JVNDB-2013-006598",
"trust": 0.8
},
{
"db": "ZDI_CAN",
"id": "ZDI-CAN-2047",
"trust": 0.7
},
{
"db": "ZDI",
"id": "ZDI-14-211",
"trust": 0.7
},
{
"db": "CNNVD",
"id": "CNNVD-201406-427",
"trust": 0.7
},
{
"db": "VULHUB",
"id": "VHN-65019",
"trust": 0.1
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-14-211"
},
{
"db": "VULHUB",
"id": "VHN-65019"
},
{
"db": "BID",
"id": "67752"
},
{
"db": "JVNDB",
"id": "JVNDB-2013-006598"
},
{
"db": "CNNVD",
"id": "CNNVD-201406-427"
},
{
"db": "NVD",
"id": "CVE-2013-5017"
}
]
},
"id": "VAR-201406-0071",
"iot": {
"_id": null,
"data": true,
"sources": [
{
"db": "VULHUB",
"id": "VHN-65019"
}
],
"trust": 0.01
},
"last_update_date": "2025-04-13T23:22:37.879000Z",
"patch": {
"_id": null,
"data": [
{
"title": "SYM14-010",
"trust": 0.8,
"url": "http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026pvid=security_advisory\u0026year=2014\u0026suid=20140616_00"
},
{
"title": "SYM14-010",
"trust": 0.8,
"url": "http://www.symantec.com/ja/jp/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026pvid=security_advisory\u0026year=\u0026suid=20140616_00"
},
{
"title": "Symantec has issued an update to correct this vulnerability.",
"trust": 0.7,
"url": "http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026pvid=security_advisory\u0026year=\u0026suid=20140616_00"
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-14-211"
},
{
"db": "JVNDB",
"id": "JVNDB-2013-006598"
}
]
},
"problemtype_data": {
"_id": null,
"data": [
{
"problemtype": "NVD-CWE-noinfo",
"trust": 1.0
},
{
"problemtype": "CWE-Other",
"trust": 0.8
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2013-006598"
},
{
"db": "NVD",
"id": "CVE-2013-5017"
}
]
},
"references": {
"_id": null,
"data": [
{
"trust": 1.7,
"url": "http://www.securityfocus.com/bid/67752"
},
{
"trust": 1.6,
"url": "http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026pvid=security_advisory\u0026year=2014\u0026suid=20140616_00"
},
{
"trust": 1.1,
"url": "http://www.securitytracker.com/id/1030443"
},
{
"trust": 1.0,
"url": "http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=securit%20y_advisory\u0026pvid=security_advisory\u0026year=\u0026suid=20140616_00"
},
{
"trust": 0.8,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-5017"
},
{
"trust": 0.8,
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2013-5017"
},
{
"trust": 0.7,
"url": "http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026pvid=security_advisory\u0026year=\u0026suid=20140616_00"
},
{
"trust": 0.3,
"url": "http://www.symantec.com/business/web-gateway"
},
{
"trust": 0.1,
"url": "http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=securit%20y_advisory\u0026amp;pvid=security_advisory\u0026amp;year=\u0026amp;suid=20140616_00"
},
{
"trust": 0.1,
"url": "http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026amp;pvid=security_advisory\u0026amp;year=2014\u0026amp;suid=20140616_00"
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-14-211"
},
{
"db": "VULHUB",
"id": "VHN-65019"
},
{
"db": "BID",
"id": "67752"
},
{
"db": "JVNDB",
"id": "JVNDB-2013-006598"
},
{
"db": "CNNVD",
"id": "CNNVD-201406-427"
},
{
"db": "NVD",
"id": "CVE-2013-5017"
}
]
},
"sources": {
"_id": null,
"data": [
{
"db": "ZDI",
"id": "ZDI-14-211",
"ident": null
},
{
"db": "VULHUB",
"id": "VHN-65019",
"ident": null
},
{
"db": "BID",
"id": "67752",
"ident": null
},
{
"db": "JVNDB",
"id": "JVNDB-2013-006598",
"ident": null
},
{
"db": "CNNVD",
"id": "CNNVD-201406-427",
"ident": null
},
{
"db": "NVD",
"id": "CVE-2013-5017",
"ident": null
}
]
},
"sources_release_date": {
"_id": null,
"data": [
{
"date": "2014-06-18T00:00:00",
"db": "ZDI",
"id": "ZDI-14-211",
"ident": null
},
{
"date": "2014-06-18T00:00:00",
"db": "VULHUB",
"id": "VHN-65019",
"ident": null
},
{
"date": "2014-06-16T00:00:00",
"db": "BID",
"id": "67752",
"ident": null
},
{
"date": "2014-06-23T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2013-006598",
"ident": null
},
{
"date": "2014-06-20T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201406-427",
"ident": null
},
{
"date": "2014-06-18T19:55:04.420000",
"db": "NVD",
"id": "CVE-2013-5017",
"ident": null
}
]
},
"sources_update_date": {
"_id": null,
"data": [
{
"date": "2014-06-18T00:00:00",
"db": "ZDI",
"id": "ZDI-14-211",
"ident": null
},
{
"date": "2017-12-28T00:00:00",
"db": "VULHUB",
"id": "VHN-65019",
"ident": null
},
{
"date": "2014-06-18T17:45:00",
"db": "BID",
"id": "67752",
"ident": null
},
{
"date": "2014-06-23T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2013-006598",
"ident": null
},
{
"date": "2014-06-20T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201406-427",
"ident": null
},
{
"date": "2025-04-12T10:46:40.837000",
"db": "NVD",
"id": "CVE-2013-5017",
"ident": null
}
]
},
"threat_type": {
"_id": null,
"data": "specific network environment",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201406-427"
}
],
"trust": 0.6
},
"title": {
"_id": null,
"data": "Symantec Web Gateway Management console SNMPConfig.php Vulnerable to arbitrary command execution",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2013-006598"
}
],
"trust": 0.8
},
"type": {
"_id": null,
"data": "code injection",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201406-427"
}
],
"trust": 0.6
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…