Signature Detail
Short Name |
APP:SYMC:MESSAGING-SSH-PASSWORD |
|---|---|
Severity |
High |
Recommended |
No |
Recommended Action |
Drop |
Category |
APP |
Keywords |
Symantec Messaging Gateway Default SSH Password |
Release Date |
2013/09/17 |
Update Number |
2301 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
APP: Symantec Messaging Gateway Default SSH Password
This signature detects attempts to exploit a known vulnerability against Symantec Messaging Gateway. It is due to the use of hardcoded default credentials. It can result in privilege escalation. To exploit the vulnerability, an attacker must have access to the Symantec Messaging Gateway management interface.
Extended Description
Symantec Messaging Gateway (SMG) before 10.0 has a default password for an unspecified account, which makes it easier for remote attackers to obtain privileged access via an SSH session.
Affected Products
- symantec messaging_gateway 9.5
- symantec messaging_gateway 9.5.1
- symantec messaging_gateway 9.5.2
- symantec messaging_gateway 9.5.3
- symantec messaging_gateway up to 9.5.4
References
- BugTraq: 55143
- CVE: CVE-2012-3579