Initial Publication Date: Advisory Status: Advisory Severity: CVSS Base Score:Legacy ID
20 Jul 2017 Open High CVSS v2: 7.5 SA154
Symantec Network Protection products using affected versions of Apache httpd are susceptible to multiple security vulnerabilities. A remote attacker, with access to the management interface, can cause denial of service through application crashes or bypass required authentication.
The following products are not vulnerable: Advanced Secure Gateway
Android Mobile Agent AuthConnector
Blue Coat HSM Agent for the Luna SP CacheFlow
Client Connector Cloud Data Protection for Salesforce
Cloud Data Protection for Salesforce Analytics
Cloud Data Protection for ServiceNow
Cloud Data Protection for Oracle CRM On Demand
Cloud Data Protection for Oracle Field Service Cloud
Cloud Data Protection for Oracle Sales Cloud
Cloud Data Protection Integration Server
Cloud Data Protection Communication Server
Cloud Data Protection Policy Builder
General Auth Connector Login Application
K9 Mail Threat Defense
Management Center Norman Shark Industrial Control System Protection
PacketShaper PacketShaper S-Series
PolicyCenter PolicyCenter S-Series
ProxyAV ConLog and ConLogXP
ProxySG Reporter SSL Visibility
Unified Agent X-Series XOS
The following products are under investigation: IntelligenceCenter
IntelligenceCenter Data Collector
A buffer overread flaw in HTTP response generation allows a remote attacker to send crafted HTTP requests and cause denial of service through application crashes.
These vulnerabilities can be exploited only through the management interfaces for all vulnerable products. Allowing only machines, IP addresses and subnets from a trusted network to access the management interface reduces the threat of exploiting the vulnerabilities.
By default, Director and MA do not use HTTP Basic Access Authentication in Apache httpd. Customers who leave this behavior unchanged prevent attacks against these products using CVE-2017-3167.
2018-07-23 A fix for MA is available in 4.2.12.
2018-04-22 Previously it was reported that Content Analysis is not vulnerable. Further investigation indicates that CA 2.2 is vulnerable to CVE-2017-3169 and CVE-2017-7679. CA 2.3 is not vulnerable because a fix is available in 18.104.22.168.
2017-08-30 Added remaining CVSS v2 scores.
2017-07-20 initial public release
This is machine translated content
Login to Subscribe
Please login to set up your
Would you like to be subscribed to future notifications for this article?
For security reasons, your link to this document has expired. Please click on the attachment link to access this file.
The attachment that you are looking for no longer exists.
There has been an issue retrieving your attachment. Please try again.
Currently server is down.
Didn't find the article you were looking for? Try these resources.