Short Name |
HTTP:PHP:SYM-WG-FILE-UP |
---|---|
Severity |
Major |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Symantec Web Gateway Arbitrary PHP File Upload Vulnerability |
Release Date |
2012/06/25 |
Update Number |
2155 |
Supported Platforms |
idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
This signature detects attempts to exploit a known vulnerability against Symantec Web Gateway. A successful attack can lead to arbitrary code execution.
Symantec Web Gateway is prone to an arbitrary file-upload vulnerability. An attacker can exploit this vulnerability to upload arbitrary code and run it in the context of the webserver process. This may facilitate unauthorized access or OS command execution with elevated privileges; other attacks are also possible.