Intrusion Prevention

Symantec.Web.Gateway.Ipchange.Command.Injection

Description

This indicates an attack attempt against a Command Execution vulnerability in Symantec Web Gateway.
The vulnerability is caused by an error when the vulnerable software handles a malicious HTTP request with a crafted URI. It allows a remote attacker to execute command via sending a crafted URI to a vulnerable application.

Affected Products

Symantec Web Gateway 5.0.1
Symantec Web Gateway 5.0

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Apply the most recent upgrades or patches from the vendor.
http://www.symantec.com/business/web-gateway

CVE References

CVE-2012-0297