Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Symantec Advanced Secure Gateway (ASG) and ProxySG are susceptible to an HTTP desync vulnerability. When a remote unauthenticated attacker and other web clients communicate through the proxy with the same web server, the attacker can send crafted HTTP requests and cause the proxy to forward web server responses to unintended clients. Severity/CVSSv3: High / 8.1 AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Symantec Advanced Secure Gateway 环境问题漏洞
Vulnerability Description
Symantec Advanced Secure Gateway(ASG)是美国赛门铁克(Symantec)公司的一款安全网关设备。 Symantec Advanced Secure Gateway (ASG) 和 ProxySG存在环境问题漏洞,该漏洞源于容易受到 HTTP 异步漏洞的影响。攻击者利用该漏洞发送特制的 HTTP 请求,并使用代理将 Web 服务器响应转发给其他客户端。
CVSS Information
N/A
Vulnerability Type
N/A