Symantec Web Gateway CVE-2013-5012 Multiple SQL Injection Vulnerabilities

Symantec Web Gateway is prone to multiple unspecified SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query.

Exploiting these issues could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.

Symantec Web Gateway 5.1.1 is vulnerable; prior versions may also be affected.


 

Privacy Statement
Copyright 2010, SecurityFocus