Show filters
37 Total Results
Displaying 21-30 of 37
Sort by:
Attacker Value
Unknown
CVE-2012-4178
Disclosure Date: August 07, 2012 (last updated October 04, 2023)
SQL injection vulnerability in spywall/includes/deptUploads_data.php in Symantec Web Gateway 5.0.3.18 allows remote attackers to execute arbitrary SQL commands via the groupid parameter.
0
Attacker Value
Unknown
CVE-2012-2976
Disclosure Date: July 23, 2012 (last updated October 04, 2023)
The management console in Symantec Web Gateway 5.0.x before 5.0.3.18 allows remote attackers to execute arbitrary shell commands via crafted input to application scripts, related to an "injection" issue.
0
Attacker Value
Unknown
CVE-2012-2961
Disclosure Date: July 23, 2012 (last updated October 04, 2023)
SQL injection vulnerability in the management console in Symantec Web Gateway 5.0.x before 5.0.3.18 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
0
Attacker Value
Unknown
CVE-2012-2953
Disclosure Date: July 23, 2012 (last updated October 04, 2023)
The management console in Symantec Web Gateway 5.0.x before 5.0.3.18 allows remote attackers to execute arbitrary commands via crafted input to application scripts.
0
Attacker Value
Unknown
CVE-2012-2574
Disclosure Date: July 23, 2012 (last updated October 04, 2023)
SQL injection vulnerability in the management console in Symantec Web Gateway 5.0.x before 5.0.3.18 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, related to a "blind SQL injection" issue.
0
Attacker Value
Unknown
CVE-2012-2957
Disclosure Date: July 23, 2012 (last updated October 04, 2023)
The management console in Symantec Web Gateway 5.0.x before 5.0.3.18 allows local users to gain privileges by modifying files, related to a "file inclusion" issue.
0
Attacker Value
Unknown
CVE-2012-2977
Disclosure Date: July 23, 2012 (last updated October 04, 2023)
The management console in Symantec Web Gateway 5.0.x before 5.0.3.18 allows remote attackers to change arbitrary passwords via crafted input to an application script.
0
Attacker Value
Unknown
CVE-2012-0296
Disclosure Date: May 21, 2012 (last updated October 04, 2023)
Multiple cross-site scripting (XSS) vulnerabilities in the management GUI in Symantec Web Gateway 5.0.x before 5.0.3 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
0
Attacker Value
Unknown
CVE-2012-0298
Disclosure Date: May 21, 2012 (last updated October 04, 2023)
The file-management scripts in the management GUI in Symantec Web Gateway 5.0.x before 5.0.3 allow remote attackers to (1) read or (2) delete arbitrary files via unspecified vectors.
0
Attacker Value
Unknown
CVE-2012-1454
Disclosure Date: March 21, 2012 (last updated October 04, 2023)
The ELF file parser in Dr.Web 5.0.2.03300, eSafe 7.0.17.0, McAfee Gateway (formerly Webwasher) 2010.1C, Rising Antivirus 22.83.00.03, Fortinet Antivirus 4.2.254.0, and Panda Antivirus 10.0.2.7 allows remote attackers to bypass malware detection via an ELF file with a modified ei_version field. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different ELF parser implementations.
0