Details of VAR-201708-1312

ID

VAR-201708-1312

CVE

CVE-2017-6327

TITLE

Symantec Messaging Gateway Vulnerabilities related to authorization, permissions, and access control

Trust: 0.8

sources: JVNDB: JVNDB-2017-007188

DESCRIPTION

The Symantec Messaging Gateway before 10.6.3-267 can encounter an issue of remote code execution, which describes a situation whereby an individual may obtain the ability to execute commands remotely on a target machine or in a target process. In this type of occurrence, after gaining access to the system, the attacker may attempt to elevate their privileges. Symantec Messaging Gateway Contains vulnerabilities related to authorization, permissions, and access control.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Symantec Messaging Gateway is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code on the affected system. Versions prior to Symantec Messaging Gateway 10.6.3-267 are vulnerable. Symantec Messaging Gateway is a set of anti-spam, anti-virus, advanced content filtering and data leakage prevention technologies developed by Symantec

Trust: 2.07

sources: NVD: CVE-2017-6327 // JVNDB: JVNDB-2017-007188 // BID: 100135 // VULHUB: VHN-114530 // VULMON: CVE-2017-6327

AFFECTED PRODUCTS

vendor:	symantec	model:	message gateway	scope:	lt	version:	10.6.3-267	Trust: 1.8
vendor:	symantec	model:	message gateway	scope:	eq	version:	10.6.3-2	Trust: 0.6
vendor:	symantec	model:	messaging gateway	scope:	eq	version:	10.6.3	Trust: 0.3
vendor:	symantec	model:	messaging gateway	scope:	eq	version:	10.5.2	Trust: 0.3
vendor:	symantec	model:	messaging gateway	scope:	eq	version:	10.5.1	Trust: 0.3
vendor:	symantec	model:	messaging gateway	scope:	eq	version:	10.5	Trust: 0.3
vendor:	symantec	model:	messaging gateway	scope:	eq	version:	10.0.1	Trust: 0.3
vendor:	symantec	model:	messaging gateway	scope:	eq	version:	9.5.4	Trust: 0.3
vendor:	symantec	model:	messaging gateway	scope:	eq	version:	9.5.3	Trust: 0.3
vendor:	symantec	model:	messaging gateway	scope:	eq	version:	9.5.3-3	Trust: 0.3
vendor:	symantec	model:	messaging gateway	scope:	eq	version:	9.5.2	Trust: 0.3
vendor:	symantec	model:	messaging gateway	scope:	eq	version:	9.5.1	Trust: 0.3
vendor:	symantec	model:	messaging gateway	scope:	eq	version:	9.5	Trust: 0.3
vendor:	symantec	model:	messaging gateway	scope:	eq	version:	10.6.3-266	Trust: 0.3
vendor:	symantec	model:	messaging gateway	scope:	eq	version:	10.6.2	Trust: 0.3
vendor:	symantec	model:	messaging gateway	scope:	eq	version:	10.6.1-3	Trust: 0.3
vendor:	symantec	model:	messaging gateway	scope:	eq	version:	10.6.1	Trust: 0.3
vendor:	symantec	model:	messaging gateway	scope:	eq	version:	10.6.0-7	Trust: 0.3
vendor:	symantec	model:	messaging gateway	scope:	eq	version:	10.6.0-3	Trust: 0.3
vendor:	symantec	model:	messaging gateway	scope:	eq	version:	10.6	Trust: 0.3
vendor:	symantec	model:	messaging gateway	scope:	eq	version:	10.1	Trust: 0.3
vendor:	symantec	model:	messaging gateway	scope:	eq	version:	10.0.3	Trust: 0.3
vendor:	symantec	model:	messaging gateway	scope:	eq	version:	10.0.2	Trust: 0.3
vendor:	symantec	model:	messaging gateway	scope:	eq	version:	10.0	Trust: 0.3
vendor:	symantec	model:	messaging gateway	scope:	ne	version:	10.6.3-267	Trust: 0.3

sources: BID: 100135 // JVNDB: JVNDB-2017-007188 // CNNVD: CNNVD-201702-869 // NVD: CVE-2017-6327

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2017-6327
value:	HIGH
Trust: 1.0
NVD:	CVE-2017-6327
value:	HIGH
Trust: 0.8
CNNVD:	CNNVD-201702-869
value:	HIGH
Trust: 0.6
VULHUB:	VHN-114530
value:	MEDIUM
Trust: 0.1
VULMON:	CVE-2017-6327
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2017-6327
severity:	MEDIUM
baseScore:	6.5
vectorString:	AV:N/AC:L/AU:S/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	8.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.9
VULHUB:	VHN-114530
severity:	MEDIUM
baseScore:	6.5
vectorString:	AV:N/AC:L/AU:S/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	8.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2017-6327
baseSeverity:	HIGH
baseScore:	8.8
vectorString:	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	2.8
impactScore:	5.9
version:	3.1
Trust: 1.0
NVD:	CVE-2017-6327
baseSeverity:	HIGH
baseScore:	8.8
vectorString:	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: VULHUB: VHN-114530 // VULMON: CVE-2017-6327 // JVNDB: JVNDB-2017-007188 // CNNVD: CNNVD-201702-869 // NVD: CVE-2017-6327

PROBLEMTYPE DATA

problemtype:	NVD-CWE-noinfo	Trust: 1.0
problemtype:	CWE-264	Trust: 0.9
problemtype:	CWE-20	Trust: 0.1

sources: VULHUB: VHN-114530 // JVNDB: JVNDB-2017-007188 // NVD: CVE-2017-6327

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201702-869

TYPE

input validation error

Trust: 0.6

sources: CNNVD: CNNVD-201702-869

CONFIGURATIONS

sources: JVNDB: JVNDB-2017-007188

EXPLOIT AVAILABILITY

sources: VULHUB: VHN-114530 // VULMON: CVE-2017-6327

PATCH

title:	SYM17-006	url:	https://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20170810_00	Trust: 0.8
title:	Symantec Messaging Gateway Security vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=99656	Trust: 0.6
title:	Symantec Security Advisories: Symantec Messaging Gateway RCE and CSRF	url:	https://vulmon.com/vendoradvisory?qidtp=symantec_security_advisories&qid=c0ee8fdc79b5124205ebcb6279717998	Trust: 0.1
title:	Awesome CVE PoC	url:	https://github.com/lnick2023/nicenice	Trust: 0.1
title:	Awesome CVE PoC	url:	https://github.com/xbl3/awesome-cve-poc_qazbnm456	Trust: 0.1
title:	Known Exploited Vulnerabilities Detector	url:	https://github.com/Ostorlab/KEV	Trust: 0.1
title:	Awesome CVE PoC	url:	https://github.com/qazbnm456/awesome-cve-poc	Trust: 0.1
title:	Threatpost	url:	https://threatpost.com/bug-nsa-china-backed-cyberattacks/160421/	Trust: 0.1

sources: VULMON: CVE-2017-6327 // JVNDB: JVNDB-2017-007188 // CNNVD: CNNVD-201702-869

EXTERNAL IDS

db:	NVD	id:	CVE-2017-6327	Trust: 2.9
db:	BID	id:	100135	Trust: 2.1
db:	EXPLOIT-DB	id:	42519	Trust: 1.8
db:	JVNDB	id:	JVNDB-2017-007188	Trust: 0.8
db:	CNNVD	id:	CNNVD-201702-869	Trust: 0.7
db:	SEEBUG	id:	SSVID-96367	Trust: 0.1
db:	PACKETSTORM	id:	143821	Trust: 0.1
db:	VULHUB	id:	VHN-114530	Trust: 0.1
db:	VULMON	id:	CVE-2017-6327	Trust: 0.1

sources: VULHUB: VHN-114530 // VULMON: CVE-2017-6327 // BID: 100135 // JVNDB: JVNDB-2017-007188 // CNNVD: CNNVD-201702-869 // NVD: CVE-2017-6327

REFERENCES

url:	https://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20170810_00	Trust: 2.0
url:	http://www.securityfocus.com/bid/100135	Trust: 1.9
url:	https://www.exploit-db.com/exploits/42519/	Trust: 1.9
url:	http://seclists.org/fulldisclosure/2017/aug/28	Trust: 1.8
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-6327	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2017-6327	Trust: 0.8
url:	http://www.symantec.com	Trust: 0.3
url:	https://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20170810_00	Trust: 0.1
url:	https://cwe.mitre.org/data/definitions/20.html	Trust: 0.1
url:	https://nvd.nist.gov	Trust: 0.1
url:	https://threatpost.com/bug-nsa-china-backed-cyberattacks/160421/	Trust: 0.1
url:	https://support.symantec.com/en_us/article.symsa1411.html	Trust: 0.1

sources: VULHUB: VHN-114530 // VULMON: CVE-2017-6327 // BID: 100135 // JVNDB: JVNDB-2017-007188 // CNNVD: CNNVD-201702-869 // NVD: CVE-2017-6327

CREDITS

Philip Pettersson: philip.pettersson@gmail.com

Trust: 0.3

sources: BID: 100135

SOURCES

db:	VULHUB	id:	VHN-114530
db:	VULMON	id:	CVE-2017-6327
db:	BID	id:	100135
db:	JVNDB	id:	JVNDB-2017-007188
db:	CNNVD	id:	CNNVD-201702-869
db:	NVD	id:	CVE-2017-6327

LAST UPDATE DATE

2024-08-14T15:34:35.698000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-114530	date:	2019-10-03T00:00:00
db:	VULMON	id:	CVE-2017-6327	date:	2019-10-03T00:00:00
db:	BID	id:	100135	date:	2017-08-10T00:00:00
db:	JVNDB	id:	JVNDB-2017-007188	date:	2017-09-13T00:00:00
db:	CNNVD	id:	CNNVD-201702-869	date:	2019-10-23T00:00:00
db:	NVD	id:	CVE-2017-6327	date:	2024-07-24T17:11:25.850

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-114530	date:	2017-08-11T00:00:00
db:	VULMON	id:	CVE-2017-6327	date:	2017-08-11T00:00:00
db:	BID	id:	100135	date:	2017-08-10T00:00:00
db:	JVNDB	id:	JVNDB-2017-007188	date:	2017-09-13T00:00:00
db:	CNNVD	id:	CNNVD-201702-869	date:	2017-02-27T00:00:00
db:	NVD	id:	CVE-2017-6327	date:	2017-08-11T20:29:00.207