Symantec Web Gateway LFI Remote ROOT RCE Exploit Vulnerability
31 Dec. 2012
Symantec's Web Gateway management console is susceptible to multiple security issues that include remote command execution, local file inclusion, arbitrary password change and SQL injection security issues.
The information has been provided by muts.
*Symantec Web Gateway 18.104.22.168
The original patch for the Symantec Web Gateway 5.0.2 LFI vulnerability removed the /tmp/networkScript file but left the entry in /etc/sudoers, allowing us to simply recreate the file and obtain a root shell using a different LFI vulnerability.