3 matches found
Symantec Messaging Gateway Remote Code Execution Vulnerability (CNVD-2017-28446)
Symantec Messaging Gateway is a suite of anti-spam, anti-virus, advanced content filtering and data leakage protection technologies from Symantec. A remote code execution vulnerability exists in Symantec Messaging Gateway versions prior to 10.6.3-267. A remote attacker could exploit this...
CVE-2017-6328
The Symantec Messaging Gateway before 10.6.3-267 can encounter an issue of cross site request forgery also known as one-click attack and is abbreviated as CSRF or XSRF, which is a type of malicious exploit of a website where unauthorized commands are transmitted from a user that the web applicati...
CVE-2017-6328
CVE-2017-6328 affects Symantec Messaging Gateway before 10.6.3-267. The vulnerability is a cross-site request forgery (CSRF/XSRF) flaw where authenticated actions (e.g., logout) can be triggered by forged requests without multi-step tokens. Public sources (NVD, Nessus/SA plug-in, OpenVAS entry, E...