cnvd - cnvd-2018-01387

CNVD-2018-01387

Vulnerability from cnvd - Published: 2018-01-19

Title

Symantec ProxySG和Advanced Secure Gateway信息泄露漏洞

Description

Symantec ProxySG和Advanced Secure Gateway（ASG）都是美国赛门铁克（Symantec）公司的安全网关设备。 Symantec ProxySG和ASG中存在信息泄露漏洞。远程攻击者可利用该漏洞获取敏感信息。

Severity

中

Patch Name

Symantec ProxySG和Advanced Secure Gateway信息泄露漏洞的补丁

Patch Description

Symantec ProxySG和Advanced Secure Gateway（ASG）都是美国赛门铁克（Symantec）公司的安全网关设备。 Symantec ProxySG和ASG中存在信息泄露漏洞。远程攻击者可利用该漏洞获取敏感信息。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

目前厂商已发布升级补丁以修复漏洞，详情请关注厂商主页： https://www.symantec.com/products/secure-web-gateway-proxy-sg-and-asg

Reference

https://www.symantec.com/security-center/network-protection-security-advisories/SA155 http://www.securityfocus.com/bid/102454

Impacted products

Name
['Symantec Advanced Secure Gateway >=6.6，<=6.6.5.13', 'Symantec Advanced Secure Gateway >=6.7，<=6.7.3.1', 'Symantec ProxySG >=6.6，<=6.6.5.13', 'Symantec ProxySG >=6.7，<=6.7.3.1']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2016-9100"
    }
  },
  "description": "Symantec ProxySG\u548cAdvanced Secure Gateway\uff08ASG\uff09\u90fd\u662f\u7f8e\u56fd\u8d5b\u95e8\u94c1\u514b\uff08Symantec\uff09\u516c\u53f8\u7684\u5b89\u5168\u7f51\u5173\u8bbe\u5907\u3002\r\n\r\nSymantec ProxySG\u548cASG\u4e2d\u5b58\u5728\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u83b7\u53d6\u654f\u611f\u4fe1\u606f\u3002",
  "discovererName": "Jakub Palaczynski and Pawel Bartunek.",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8be6\u60c5\u8bf7\u5173\u6ce8\u5382\u5546\u4e3b\u9875\uff1a\r\nhttps://www.symantec.com/products/secure-web-gateway-proxy-sg-and-asg",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2018-01387",
  "openTime": "2018-01-19",
  "patchDescription": "Symantec ProxySG\u548cAdvanced Secure Gateway\uff08ASG\uff09\u90fd\u662f\u7f8e\u56fd\u8d5b\u95e8\u94c1\u514b\uff08Symantec\uff09\u516c\u53f8\u7684\u5b89\u5168\u7f51\u5173\u8bbe\u5907\u3002\r\n\r\nSymantec ProxySG\u548cASG\u4e2d\u5b58\u5728\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u83b7\u53d6\u654f\u611f\u4fe1\u606f\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Symantec ProxySG\u548cAdvanced Secure Gateway\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Symantec Advanced Secure Gateway \u003e=6.6\uff0c\u003c=6.6.5.13",
      "Symantec Advanced Secure Gateway \u003e=6.7\uff0c\u003c=6.7.3.1",
      "Symantec ProxySG \u003e=6.6\uff0c\u003c=6.6.5.13",
      "Symantec ProxySG \u003e=6.7\uff0c\u003c=6.7.3.1"
    ]
  },
  "referenceLink": "https://www.symantec.com/security-center/network-protection-security-advisories/SA155\r\nhttp://www.securityfocus.com/bid/102454",
  "serverity": "\u4e2d",
  "submitTime": "2018-01-11",
  "title": "Symantec ProxySG\u548cAdvanced Secure Gateway\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e"
}

CVE-2016-9100 (GCVE-0-2016-9100)

Vulnerability from cvelistv5 – Published: 2017-05-11 14:01 – Updated: 2024-09-16 20:42

Summary

Symantec Advanced Secure Gateway (ASG) 6.6 prior to 6.6.5.13, ASG 6.7 prior to 6.7.3.1, ProxySG 6.5 prior to 6.5.10.6, ProxySG 6.6 prior to 6.6.5.13, and ProxySG 6.7 prior to 6.7.3.1 are susceptible to an information disclosure vulnerability. An attacker with local access to the client host of an authenticated administrator user can, under certain circumstances, obtain sensitive authentication credential information.

Severity ?

No CVSS data available.

CWE

Information disclosure

Assigner

symantec

References

URL

Tags

	http://www.securitytracker.com/id/1040138	vdb-entryx_refsource_SECTRACK
	https://www.symantec.com/security-center/network-…	x_refsource_CONFIRM
	http://www.securityfocus.com/bid/102454	vdb-entryx_refsource_BID

Impacted products

Vendor

Product

Version

Symantec Corporation

ASG

Affected: 6.6 prior to 6.6.5.13
Affected: 6.7 prior to 6.7.3.1

Symantec Corporation

ProxySG

Affected: 6.5 prior to 6.5.10.6
Affected: 6.6 prior to 6.6.5.13
Affected: 6.7 prior to 6.7.3.1

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T02:42:10.357Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "1040138",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1040138"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://www.symantec.com/security-center/network-protection-security-advisories/SA155"
          },
          {
            "name": "102454",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/102454"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "ASG",
          "vendor": "Symantec Corporation",
          "versions": [
            {
              "status": "affected",
              "version": "6.6 prior to 6.6.5.13"
            },
            {
              "status": "affected",
              "version": "6.7 prior to 6.7.3.1"
            }
          ]
        },
        {
          "product": "ProxySG",
          "vendor": "Symantec Corporation",
          "versions": [
            {
              "status": "affected",
              "version": "6.5 prior to 6.5.10.6"
            },
            {
              "status": "affected",
              "version": "6.6 prior to 6.6.5.13"
            },
            {
              "status": "affected",
              "version": "6.7 prior to 6.7.3.1"
            }
          ]
        }
      ],
      "datePublic": "2018-01-09T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Symantec Advanced Secure Gateway (ASG) 6.6 prior to 6.6.5.13, ASG 6.7 prior to 6.7.3.1, ProxySG 6.5 prior to 6.5.10.6, ProxySG 6.6 prior to 6.6.5.13, and ProxySG 6.7 prior to 6.7.3.1 are susceptible to an information disclosure vulnerability. An attacker with local access to the client host of an authenticated administrator user can, under certain circumstances, obtain sensitive authentication credential information."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Information disclosure",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-01-11T10:57:01",
        "orgId": "80d3bcb6-88de-48c2-a47e-aebf795f19b5",
        "shortName": "symantec"
      },
      "references": [
        {
          "name": "1040138",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1040138"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://www.symantec.com/security-center/network-protection-security-advisories/SA155"
        },
        {
          "name": "102454",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/102454"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "secure@symantec.com",
          "DATE_PUBLIC": "2018-01-09T00:00:00",
          "ID": "CVE-2016-9100",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "ASG",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "6.6 prior to 6.6.5.13"
                          },
                          {
                            "version_value": "6.7 prior to 6.7.3.1"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "ProxySG",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "6.5 prior to 6.5.10.6"
                          },
                          {
                            "version_value": "6.6 prior to 6.6.5.13"
                          },
                          {
                            "version_value": "6.7 prior to 6.7.3.1"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Symantec Corporation"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Symantec Advanced Secure Gateway (ASG) 6.6 prior to 6.6.5.13, ASG 6.7 prior to 6.7.3.1, ProxySG 6.5 prior to 6.5.10.6, ProxySG 6.6 prior to 6.6.5.13, and ProxySG 6.7 prior to 6.7.3.1 are susceptible to an information disclosure vulnerability. An attacker with local access to the client host of an authenticated administrator user can, under certain circumstances, obtain sensitive authentication credential information."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Information disclosure"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "1040138",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1040138"
            },
            {
              "name": "https://www.symantec.com/security-center/network-protection-security-advisories/SA155",
              "refsource": "CONFIRM",
              "url": "https://www.symantec.com/security-center/network-protection-security-advisories/SA155"
            },
            {
              "name": "102454",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/102454"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "80d3bcb6-88de-48c2-a47e-aebf795f19b5",
    "assignerShortName": "symantec",
    "cveId": "CVE-2016-9100",
    "datePublished": "2017-05-11T14:01:00Z",
    "dateReserved": "2016-10-28T00:00:00",
    "dateUpdated": "2024-09-16T20:42:42.195Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2018-01387

CVE-2016-9100 (GCVE-0-2016-9100)

Tags

Sightings

Nomenclature