Symantec Messaging Gateway 10 Exposure Of Stored AD Password

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'digest' require "openssl" class MetasploitModule 'Symantec Messaging Gateway 10 Exposure of Stored AD Password Vulnerability', 'Description' = %q This module wi...

CVE-2016-2203

creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/symantecbrightmailldapcreds.rb 2025-02-06 03:13:42+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23 04:09:46+00:0...

Symantec Messaging Gateway 10.x < 10.6.1 Management Console Multiple Vulnerabilities (SYM16-005)

According to its self-reported version number, the Symantec Messaging Gateway SMG running on the remote host is 10.x prior to 10.6.1. It is, therefore, affected by multiple vulnerabilities : - A privilege escalation vulnerability exists in the SMG management console due to AD password information...

CVE-2016-2203

CVE-2016-2203 affects Symantec Messaging Gateway (SMG) Appliance prior to 10.6.1. The management console stores or exposes an encrypted AD password in a way that allows a local attacker with read privileges to recover the LDAP credentials. Impact: local disclosure of AD password with high confide...

Symantec Brightmail 10.6.0-7 - LDAP Credentials Disclosure (Metasploit)

Exploit for java platform in category web applications Exploit Title: Symantec Brightmail ldap credential Grabber Date: 18/04/2016 Exploit Author: Fakhir Karim Reda Vendor Homepage:...

Symantec Brightmail 10.6.0-7 - LDAP Credentials Disclosure (Metasploit)

Symantec Brightmail 10.6.0-7 - LDAP Credentials Disclosure Metasploit Exploit Title: Symantec Brightmail ldap credential Grabber Date: 18/04/2016 Exploit Author: Fakhir Karim Reda Vendor Homepage:...

Symantec Brightmail 10.6.0-7 LDAP Credential Grabber

Exploit Title: Symantec Brightmail ldap credential Grabber Date: 18/04/2016 Exploit Author: Fakhir Karim Reda Vendor Homepage: https://www.symantec.com/securityresponse/securityupdates/detail.jsp?fid=securityadvisory&pvid=securityadvisory&year&suid=2016041800 Version: 10.6.0-7 and earlier Tested...

Symantec Brightmail 10.6.0-7 - LDAP Credentials Disclosure (Metasploit)

Exploit Title: Symantec Brightmail ldap credential Grabber Date: 18/04/2016 Exploit Author: Fakhir Karim Reda Vendor Homepage: https://www.symantec.com/securityresponse/securityupdates/detail.jsp?fid=securityadvisory&pvid=securityadvisory&year&suid=2016041800 Version: 10.6.0-7 and earlier Tested...