Information Security News mailing list archives

Previous By Date Next
Previous By Thread Next

Symantec slams Web Gateway back door on would-be corporate spies

From: InfoSec News <alerts () infosecnews org>
Date: Tue, 30 Jul 2013 08:04:25 +0000 (UTC)
http://www.theregister.co.uk/2013/07/29/symantec_web_gateway_vulns_fixed/

By John Leyden
The Register
29th July 2013
Symantec has plugged a series of critical flaws in its Web Gateway appliances which included a backdoor permitting remote code execution on targeted systems.
The flaws, discovered during a short crash test by security researchers at Austrian firm SEC Consult, created a means to execute code with root privileges - or the ability to take over a vulnerable appliance.
In an advisory note, SEC Consult Vulnerability Lab warns the flaws posed a huge spying risk to corporate users of Symantec's technology, which is designed to prevent malware and other threats from getting inside corporate networks. 

[...]



--
Find the best InfoSec talent without breaking your budget!
Post a Job! $99 for 31 days
http://www.hotinfosecjobs.com/
Previous By Date Next
Previous By Thread Next

Current thread: