Sign-up

ID

VAR-201712-0243


CVE

CVE-2017-15532


TITLE

Symantec Messaging Gateway Path traversal vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2017-011612

DESCRIPTION

Prior to 10.6.4, Symantec Messaging Gateway may be susceptible to a path traversal attack (also known as directory traversal). These types of attacks aim to access files and directories that are stored outside the web root folder. By manipulating variables, it may be possible to access arbitrary files and directories stored on the file system including application source code or configuration and critical system files. This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Symantec Messaging Gateway. Authentication is required to exploit this vulnerability.The specific flaw exists within the export servlet. When parsing the snmpFileName parameter, the process does not properly validate a user-supplied path prior to using it in file operations. An attacker can leverage this vulnerability to disclose sensitive information under the context of the web service. Symantec Messaging Gateway is a set of anti-spam, anti-virus, advanced content filtering and data leakage prevention technologies developed by Symantec

Trust: 2.61

sources: NVD: CVE-2017-15532 // JVNDB: JVNDB-2017-011612 // ZDI: ZDI-17-1009 // BID: 102096 // VULHUB: VHN-106364

AFFECTED PRODUCTS

vendor:symantecmodel:messaging gatewayscope:ltversion:10.6.4

Trust: 1.8

vendor:symantecmodel:messaging gatewayscope:eqversion:10.5.2

Trust: 0.9

vendor:symantecmodel:messaging gatewayscope:eqversion:10.5.1

Trust: 0.9

vendor:symantecmodel:messaging gatewayscope:eqversion:10.0.1

Trust: 0.9

vendor:symantecmodel:messaging gatewayscope:eqversion:9.5.4

Trust: 0.9

vendor:symantecmodel:messaging gatewayscope:eqversion:9.5.3

Trust: 0.9

vendor:symantecmodel:messaging gatewayscope:eqversion:9.5.2

Trust: 0.9

vendor:symantecmodel:messaging gatewayscope:eqversion:10.0.3

Trust: 0.9

vendor:symantecmodel:messaging gatewayscope:eqversion:10.0.2

Trust: 0.9

vendor:symantecmodel:messaging gatewayscope:eqversion:10.0

Trust: 0.9

vendor:symantecmodel:messaging gatewayscope: - version: -

Trust: 0.7

vendor:symantecmodel:messaging gatewayscope:eqversion:10.5.0

Trust: 0.6

vendor:symantecmodel:messaging gatewayscope:eqversion:10.6.3

Trust: 0.3

vendor:symantecmodel:messaging gatewayscope:eqversion:10.5

Trust: 0.3

vendor:symantecmodel:messaging gatewayscope:eqversion:9.5.3-3

Trust: 0.3

vendor:symantecmodel:messaging gatewayscope:eqversion:9.5.1

Trust: 0.3

vendor:symantecmodel:messaging gatewayscope:eqversion:9.5

Trust: 0.3

vendor:symantecmodel:messaging gatewayscope:eqversion:10.6.2

Trust: 0.3

vendor:symantecmodel:messaging gatewayscope:eqversion:10.6.1-3

Trust: 0.3

vendor:symantecmodel:messaging gatewayscope:eqversion:10.6.1

Trust: 0.3

vendor:symantecmodel:messaging gatewayscope:eqversion:10.6.0-7

Trust: 0.3

vendor:symantecmodel:messaging gatewayscope:eqversion:10.6.0-3

Trust: 0.3

vendor:symantecmodel:messaging gatewayscope:eqversion:10.6

Trust: 0.3

vendor:symantecmodel:messaging gatewayscope:eqversion:10.1

Trust: 0.3

vendor:symantecmodel:messaging gatewayscope:neversion:10.6.4

Trust: 0.3

sources: ZDI: ZDI-17-1009 // BID: 102096 // JVNDB: JVNDB-2017-011612 // CNNVD: CNNVD-201712-765 // NVD: CVE-2017-15532

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2017-15532
value: MEDIUM

Trust: 1.0

NVD: CVE-2017-15532
value: MEDIUM

Trust: 0.8

ZDI: CVE-2017-15532
value: MEDIUM

Trust: 0.7

CNNVD: CNNVD-201712-765
value: MEDIUM

Trust: 0.6

VULHUB: VHN-106364
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2017-15532
severity: MEDIUM
baseScore: 5.5
vectorString: AV:A/AC:L/AU:S/C:C/I:N/A:N
accessVector: ADJACENT_NETWORK
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: COMPLETE
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 5.1
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

ZDI: CVE-2017-15532
severity: MEDIUM
baseScore: 4.0
vectorString: AV:N/AC:L/AU:S/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 8.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.7

VULHUB: VHN-106364
severity: MEDIUM
baseScore: 5.5
vectorString: AV:A/AC:L/AU:S/C:C/I:N/A:N
accessVector: ADJACENT_NETWORK
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: COMPLETE
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 5.1
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2017-15532
baseSeverity: MEDIUM
baseScore: 5.7
vectorString: CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
attackVector: ADJACENT
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 2.1
impactScore: 3.6
version: 3.0

Trust: 1.8

sources: ZDI: ZDI-17-1009 // VULHUB: VHN-106364 // JVNDB: JVNDB-2017-011612 // CNNVD: CNNVD-201712-765 // NVD: CVE-2017-15532

PROBLEMTYPE DATA

problemtype:CWE-22

Trust: 1.9

sources: VULHUB: VHN-106364 // JVNDB: JVNDB-2017-011612 // NVD: CVE-2017-15532

THREAT TYPE

specific network environment

Trust: 0.6

sources: CNNVD: CNNVD-201712-765

TYPE

path traversal

Trust: 0.6

sources: CNNVD: CNNVD-201712-765

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2017-011612

PATCH
title:SYM17-016url:https://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20171220_00
Trust: 1.5
title:Symantec Messaging Gateway Security vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=77257
Trust: 0.6
sources:
            
            
            ZDI: ZDI-17-1009 // 
            
            
            
            JVNDB: JVNDB-2017-011612 // 
            
            
            
            CNNVD: CNNVD-201712-765

EXTERNAL IDS
db:NVDid:CVE-2017-15532
Trust: 3.5
db:BIDid:102096
Trust: 1.4
db:JVNDBid:JVNDB-2017-011612
Trust: 0.8
db:ZDI_CANid:ZDI-CAN-4755
Trust: 0.7
db:ZDIid:ZDI-17-1009
Trust: 0.7
db:CNNVDid:CNNVD-201712-765
Trust: 0.7
db:VULHUBid:VHN-106364
Trust: 0.1
sources:
            
            
            ZDI: ZDI-17-1009 // 
            
            
            
            VULHUB: VHN-106364 // 
            
            
            
            BID: 102096 // 
            
            
            
            JVNDB: JVNDB-2017-011612 // 
            
            
            
            CNNVD: CNNVD-201712-765 // 
            
            
            
            NVD: CVE-2017-15532

REFERENCES
url:https://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20171220_00
Trust: 2.6
url:http://www.securityfocus.com/bid/102096
Trust: 1.1
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-15532
Trust: 0.8
url:https://nvd.nist.gov/vuln/detail/cve-2017-15532
Trust: 0.8
url:http://www.symantec.com/messaging-gateway
Trust: 0.3
url:http://www.symantec.com
Trust: 0.3
url:https://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20171220_00
Trust: 0.1
sources:
            
            
            ZDI: ZDI-17-1009 // 
            
            
            
            VULHUB: VHN-106364 // 
            
            
            
            BID: 102096 // 
            
            
            
            JVNDB: JVNDB-2017-011612 // 
            
            
            
            CNNVD: CNNVD-201712-765 // 
            
            
            
            NVD: CVE-2017-15532

CREDITS
rgod
Trust: 0.7
sources:
            
            
            ZDI: ZDI-17-1009

SOURCES
db:ZDIid:ZDI-17-1009
db:VULHUBid:VHN-106364
db:BIDid:102096
db:JVNDBid:JVNDB-2017-011612
db:CNNVDid:CNNVD-201712-765
db:NVDid:CVE-2017-15532

LAST UPDATE DATE
2024-11-23T23:08:52.883000+00:00

SOURCES UPDATE DATE
db:ZDIid:ZDI-17-1009date:2017-12-20T00:00:00
db:VULHUBid:VHN-106364date:2018-01-05T00:00:00
db:BIDid:102096date:2017-12-20T00:00:00
db:JVNDBid:JVNDB-2017-011612date:2018-01-22T00:00:00
db:CNNVDid:CNNVD-201712-765date:2017-12-21T00:00:00
db:NVDid:CVE-2017-15532date:2024-11-21T03:14:43.943

SOURCES RELEASE DATE
db:ZDIid:ZDI-17-1009date:2017-12-20T00:00:00
db:VULHUBid:VHN-106364date:2017-12-20T00:00:00
db:BIDid:102096date:2017-12-20T00:00:00
db:JVNDBid:JVNDB-2017-011612date:2018-01-22T00:00:00
db:CNNVDid:CNNVD-201712-765date:2017-12-21T00:00:00
db:NVDid:CVE-2017-15532date:2017-12-20T18:29:00.950