Security Vulnerabilities - Surveillance via Symantec Web Gateway

News provided by

SEC Consult Unternehmensberatung GmbH

Jul 29, 2013, 06:00 ET

VIENNA, Austria, July 29, 2013 /PRNewswire/ --

The award winning [1] web content filter solution 'Symantec Web Gateway', developed by the US-based Symantec Corp. (Nasdaq: SYMC), was shipped while containing several critical vulnerabilities. The vulnerabilities were discovered in the course of a short crash test which was carried out in the SEC Consult Vulnerability Lab by the SEC Consult experts. (http://www.sec-consult.com[2])

The vulnerabilities enable state-sponsored or criminal hackers to take full control of the Symantec Web Gateway Appliance. The surveillance of all internet web activities, which are supposed to be protected by the Symantec solution, can be performed by the attacker easily.

SEC Consult experts recommend installing the update, released by the vendor, immediately.

In the recent past SEC Consult experts have identified few other critical vulnerabilities in Symantec products (including a backdoor [3]).

SEC Consult strongly advises: Users of Symantec products should demand exhaustive security tests by (European) security experts from the vendor, before the implementation of the respective software product.

[1] http://awards.scmagazine.com/winners/2013 (Best Anti-Malware Gateway)

[2] https://www.sec-consult.com/en/Vulnerability-Lab/Advisories.htm#a131

[3] Backdoor in Symantec Messaging Gateway: https://www.sec-consult.com/en/Vulnerability-Lab/Advisories.htm#a99

For further information please contact:
Johannes Greil, MSc
Security Consultant
EuroPriSe Technical Expert
+43-1-8903043-0
[email protected]

SOURCE SEC Consult Unternehmensberatung GmbH

WANT YOUR COMPANY'S NEWS FEATURED ON PRNEWSWIRE.COM?

icon3
440k+
Newsrooms &
Influencers
icon1
9k+
Digital Media
Outlets
icon2
270k+
Journalists
Opted In
GET STARTED