CVE-2016-3969

Cross-site scripting XSS vulnerability in McAfee Email Gateway MEG 7.6.x before 7.6.404, when File Filtering is enabled with the action set to ESERVICES:REPLACE, allows remote attackers to inject arbitrary web script or HTML via an attachment in a blocked email...

CVE-2016-3969

McAfee Email Gateway (MEG) 7.6.x prior to 7.6.404 is affected by a cross-site scripting (XSS) vulnerability when File Filtering is enabled and the action is ESERVICES:REPLACE. An unauthenticated, remote attacker can exploit this by sending an attachment in a blocked email to trigger script execut...