July 29, 2013
The award winning
web content filter solution 'Symantec Web Gateway', developed by the US-based Symantec Corp. (Nasdaq: SYMC), was shipped while containing several critical vulnerabilities. The vulnerabilities were discovered in the course of a short crash test which was carried out in the SEC Consult Vulnerability Lab by the SEC Consult experts. (
The vulnerabilities enable state-sponsored or criminal hackers to take full control of the Symantec Web Gateway Appliance. The surveillance of all internet web activities, which are supposed to be protected by the Symantec solution, can be performed by the attacker easily.
SEC Consult experts recommend installing the update, released by the vendor, immediately.
In the recent past SEC Consult experts have identified few other critical vulnerabilities in Symantec products (including a backdoor
SEC Consult strongly advises: Users of Symantec products should demand exhaustive security tests by (European) security experts from the vendor, before the implementation of the respective software product.
(Best Anti-Malware Gateway)
 Backdoor in Symantec Messaging Gateway:
For further information please contact:
, MSc Security Consultant EuroPriSe Technical Expert +43-1-8903043-0
SOURCE SEC Consult Unternehmensberatung GmbH