3 matches found
Symantec PGP Universal Web Messenger Unauthorized Access
Vulnerability title: Unauthorised Access To Other Users Email Messages in Symantec PGP Universal Web Messenger CVE: CVE-2014-1643 Vendor: Symantec Product: PGP Universal Web Messenger Affected version: All Prior to 3.3.2 Fixed version: 3.3.2 Reported by: Richard O'Donnell Details: Authenticated W...
Symantec Encryption Management Server < 3.3.2 Information Disclosure
The version of Symantec Encryption Management Server listening on the remote host is earlier than version 3.3.2. It is, therefore, affected by an information disclosure vulnerability due to a flaw in the Web Email Protection component. A remote, authenticated attacker could potentially exploit th...
Symantec Encryption Management Server Web Email Protection View User’s Email
SUMMARY Symantec Encryption Management Server was susceptible to an authorized/authenticated web console user being able to view any other users stored outbound emails. The issue is in the Web Email Protection component not sufficiently restricting authorized user content access. This could allow...