CVE-2013-4671

Name of the Vulnerable Software and Affected Versions Symantec Web Gateway versions prior to 5.1.1

Description A cross-site request forgery (CSRF) issue exists in the management console of the Symantec Web Gateway appliance. This allows remote authenticated users to hijack the authentication of other users via unknown vectors.

Recommendations For versions prior to 5.1.1, update to version 5.1.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the management console to minimize the risk of exploitation.