SA138 : OS Command Injection Vulnerability in ASG and CA

SYMSA1401
Last Updated January 17, 2019
Initial Publication Date April 03, 2017
Copy Article Title/URL
Feedback
Subscribe
  • Status: Closed
  • Severity: High
  • CVSS Base Score: CVSS v2: 7.7

The ASG and CA web-based management consoles are susceptible to an OS command injection vulnerability.  An authenticated malicious administrator can execute arbitrary OS commands with elevated system privileges.

Advanced Secure Gateway (ASG)
CVE Affected Release(s) Remediation
All CVEs 6.7 Not vulnerable, fixed in 6.7.2.1
6.6 Upgrade to 6.6.5.4.

 

Content Analysis (CA)
CVE Affected Release(s) Remediation
All CVEs 2.1 and later Not vulnerable, fixed in 2.1.1.1
1.3 Upgrade to 1.3.7.4.

This vulnerability can be exploited only through the ASG and CA management interfaces.  Symantec recommends that customers deploy the ASG and CA appliances in a secure network and restrict access to the management interface.  Not deploying the appliance in a secure network or restricting management interface access increases the threat of exploiting the vulnerability.

CVE-2016-9091
Severity / CVSSv2 High / 7.7 (AV:A/AC:L/Au:S/C:C/I:C/A:C)
References SecurityFocus: BID 97372 / NVD: CVE-2016-9091
Impact OS command injection
Severity The ASG and CA management consoles are susceptible to an OS command injection vulnerability.  An authenticated malicious administrator can execute arbitrary OS commands with the privileges of the management console service.  The malicious administrator can also elevate their privileges and execute OS commands with root privileges.

Symantec recommends that customers deploy the ASG and CA appliances in a secure network and restrict access to the management interface.

Thanks to Peter Paccione, Chris Hebert, and Corey Boyd for reporting this vulnerability.

2019-01-17 Advisory Status moved to Closed.
2017-11-06 ASG 6.7 is not vulnerable.
2017-05-18 CAS 2.1 is not vulnerable.
2017-04-03 initial public release

Legacy ID: SA138

Thanks for your feedback. Let us know if you have additional comments below. (requires login)

    © 1995-2019 Broadcom. All Rights Reserved. The term “Broadcom” refers to Broadcom Inc. and/or its subsidiaries.