Information Security News mailing list archives
Symantec slams Web Gateway back door on would-be corporate spies
From: InfoSec News <alerts () infosecnews org>
Date: Tue, 30 Jul 2013 08:04:25 +0000 (UTC)
http://www.theregister.co.uk/2013/07/29/symantec_web_gateway_vulns_fixed/ By John Leyden The Register 29th July 2013Symantec has plugged a series of critical flaws in its Web Gateway appliances which included a backdoor permitting remote code execution on targeted systems.
The flaws, discovered during a short crash test by security researchers at Austrian firm SEC Consult, created a means to execute code with root privileges - or the ability to take over a vulnerable appliance.
In an advisory note, SEC Consult Vulnerability Lab warns the flaws posed a huge spying risk to corporate users of Symantec's technology, which is designed to prevent malware and other threats from getting inside corporate networks.
[...] -- Find the best InfoSec talent without breaking your budget! Post a Job! $99 for 31 days http://www.hotinfosecjobs.com/
Current thread:
- Symantec slams Web Gateway back door on would-be corporate spies InfoSec News (Jul 30)