CVE-2017-6325

Name of the Vulnerable Software and Affected Versions Symantec Messaging Gateway (affected versions not specified)

Description The issue is a file inclusion vulnerability, which occurs when an application builds a path to executable code using an attacker-controlled variable, allowing the attacker to control which file is executed at run time. This subverts how an application loads code for execution, and successful exploitation will result in remote code execution on the web server that runs the affected web application.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.