CVE-2017-6328
published 2017-08-11CVE-2017-6328: The Symantec Messaging Gateway before 10.6.3-267 can encounter an issue of cross site request forgery (also known as one-click attack and is abbreviated as…
PriorityP352high8.8CVSS 3.0
AVNACLPRNUIRSUCHIHAH
EXPLOIT
EPSS
2.14%
79.7th percentile
The Symantec Messaging Gateway before 10.6.3-267 can encounter an issue of cross site request forgery (also known as one-click attack and is abbreviated as CSRF or XSRF), which is a type of malicious exploit of a website where unauthorized commands are transmitted from a user that the web application trusts. A CSRF attack attempts to exploit the trust that a specific website has in a user's browser.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| libexif_project | libexif | >= 0 < 0.6.21-2ubuntu0.1 | 0.6.21-2ubuntu0.1 |
| libexif_project | libexif | >= 0 < 0.6.21-4ubuntu0.1 | 0.6.21-4ubuntu0.1 |
| libexif_project | libexif | >= 0 < 0.6.21-1ubuntu1+esm1 | 0.6.21-1ubuntu1+esm1 |
| symantec | message_gateway | <= 10.6.3-2 | — |
| symantec_corporation | messaging_gateway | — | — |
CVSS provenance
nvdv3.08.8HIGHCVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
osv8.1HIGH
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-v26p-6c8q-68r2: The Symantec Messaging Gateway before 10
ghsa_unreviewed·2022-05-17
CVE-2017-6328 [HIGH] CWE-352 GHSA-v26p-6c8q-68r2: The Symantec Messaging Gateway before 10
The Symantec Messaging Gateway before 10.6.3-267 can encounter an issue of cross site request forgery (also known as one-click attack and is abbreviated as CSRF or XSRF), which is a type of malicious exploit of a website where unauthorized commands are transmitted from a user that the web application trusts. A CSRF attack attempts to exploit the trust that a specific website has in a user's browser.
OSV
libexif vulnerabilities
osv·2020-02-11·CVSS 8.1
CVE-2016-6328 libexif vulnerabilities
libexif vulnerabilities
Liu Bingchang discovered that libexif incorrectly handled certain files.
An attacker could possibly use this issue to access sensitive information or
cause a denial of service. This issue only affected Ubuntu 12.04 ESM, Ubuntu 14.04 ESM and
Ubuntu 16.04 LTS. (CVE-2016-6328)
Lili Xu and Bingchang Liu discovered that libexif incorrectly handled certain files.
An attacker could possibly use this issue to access sensitive information or cause
a denial of service. This issue only affected Ubuntu 12.04 ESM, Ubuntu 14.04 ESM and
Ubuntu 16.04 LTS. (CVE-2017-7544)
It was discovered that libexif incorrectly handled certain files. An attacker could
possibly use this issue to execute arbitrary code. (CVE-2019-9278)
No detection rules found.
Exploit-DB
Unitrends UEB 10.0 - Root Remote Code Execution
exploitdb·2018-03-16·CVSS 9.8
CVE-2018-6329 [CRITICAL] Unitrends UEB 10.0 - Root Remote Code Execution
Unitrends UEB 10.0 - Root Remote Code Execution
---
# Exploit Title: Unauthenticated root RCE for Unitrends UEB 10.0
# Date: 10/17/2017
# Exploit Authors: Cale Smith, Benny Husted, Jared Arave
# Contact: https://twitter.com/iotennui || https://twitter.com/BennyHusted || https://twitter.com/0xC413
# Vendor Homepage: https://www.unitrends.com/
# Software Link: https://www.unitrends.com/download/enterprise-backup-software
# Version: 10.0.0
# Tested on: 10.0.0-2.201706252204.CentOS6, 10.0.0-5.201708151911.CentOS6
# CVE: CVE-2018-6328, CVE-2018-6329
import httplib
import urllib
import ssl
import random
import sys
import base64
import string
import socket
from optparse import OptionParser
# Print some helpful words:
print """
##################################################################
Exploit-DB
Symantec Messaging Gateway < 10.6.3-267 - Cross-Site Request Forgery
exploitdb·2017-08-09·CVSS 8.8
CVE-2017-6328 [HIGH] Symantec Messaging Gateway < 10.6.3-267 - Cross-Site Request Forgery
Symantec Messaging Gateway < 10.6.3-267 - Cross-Site Request Forgery
---
# Exploit Title: CSRF
# Date: August 9, 2017
# Software Link: https://www.symantec.com/products/messaging-gateway
# Exploit Author: Dhiraj Mishra
# Contact: http://twitter.com/mishradhiraj_
# Website: http://datarift.blogspot.in/
# CVE: CVE-2017-6328
# Category: Symantec Messaging Gateway
1. Description
The Symantec Messaging Gateway can encounter an issue of cross site request forgery (also known as one-click attack and is abbreviated as CSRF or XSRF), which is a type of malicious exploit of a website where unauthorized commands are transmitted from a user that the web application trusts. A CSRF attack attempts to exploit the trust that a specific website has in a user's browser.
2. Proof of concept
The SMG did
No writeups or analysis indexed.
http://www.securityfocus.com/bid/100136https://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20170810_00http://www.securityfocus.com/bid/100136https://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20170810_00
2017-08-11
Published