Symantec Messaging Gateway performRestore OS Command Injection Exploit

Symantec Messaging Gateway is prone to an Authentication Bypass vulnerability that allows attackers to take advantage of an improper validation of user-supplied data in the RestoreAction.performRestore method. An attacker can leverage this vulnerability to execute arbitrary code in the context of root.
Platform: 
Vulnerabilty ID: 
CVE-2017-6327
Product Version: 
2017_R2
Released Date: 
Wednesday, February 28, 2018 - 00:00