Lucene search
+L

335 matches found

Cvelist
Cvelist
added 2012/08/29 10:0 a.m.29 views

CVE-2012-3579

Symantec Messaging Gateway SMG before 10.0 has a default password for an unspecified account, which makes it easier for remote attackers to obtain privileged access via an SSH session...

6.5AI score0.40211EPSS
Exploits6References4
Cvelist
Cvelist
added 2012/08/29 10:0 a.m.22 views

CVE-2012-0307

Multiple cross-site scripting XSS vulnerabilities in Symantec Messaging Gateway SMG before 10.0 allow remote attackers to inject arbitrary web script or HTML via 1 web content or 2 e-mail content...

5.7AI score0.0197EPSS
Exploits0References3
Cvelist
Cvelist
added 2012/08/29 10:0 a.m.25 views

CVE-2012-3580

Symantec Messaging Gateway SMG before 10.0 allows remote authenticated users to modify the web application by leveraging access to the management interface...

6.2AI score0.01126EPSS
Exploits0References3
CVE
CVE
added 2012/08/29 10:0 a.m.80 views

CVE-2012-0308

Summary (CVE-2012-0308): Symantec Messaging Gateway (SMG) prior to version 10.0 is vulnerable to a Cross-Site Request Forgery (CSRF) that can hijack the authentication of administrators. The issue stems from insufficient input validation, enabling a remote attacker to entice a logged-in admin to ...

6.8CVSS7AI score0.01923EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2012/08/29 10:0 a.m.75 views

CVE-2012-3579

Symantec Messaging Gateway (SMG) versions before 10.0 are vulnerable to CVE-2012-3579 due to a hardcoded default SSH password on the support account, enabling remote login and privileged access via SSH. The issue is documented across multiple sources (SAINT advisories and OpenVAS/Nessus reference...

7.9CVSS6.6AI score0.40211EPSS
Exploits6References4Affected Software1
0day.today
0day.today
added 2012/08/29 12:0 a.m.10 views

Symantec Messaging Gateway 9.5/9.5.1 SSH Default Password Security Bypass Vulnerability

Exploit for windows platform in category remote exploits This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework...

7.1AI score
Exploits0
Symantec
Symantec
added 2012/08/27 8:0 a.m.38 views

Symantec Messaging Gateway Security Issues

SUMMARY Symantec's Messaging Gateway management console is susceptible to several security issues including cross-site scripting/cross-site request forgery, an SSH account with a default password, file downloads and potential web application modifications. Successful exploitation could result in...

7.9CVSS0.1AI score0.5883EPSS
Exploits10Affected Software1
NVD
NVD
added 2011/07/18 10:55 p.m.20 views

CVE-2011-0548

Buffer overflow in the Lotus Freelance Graphics PRZ file viewer in Autonomy KeyView, as used in Symantec Mail Security SMS 6.x through 8.x, Symantec Brightmail and Messaging Gateway before 9.5.1, and Symantec Data Loss Prevention DLP before 10.5.3 and 11.x before 11.1, allows remote attackers to...

9.3CVSS7.9AI score0.05137EPSS
Exploits0References5
Prion
Prion
added 2011/07/18 10:55 p.m.20 views

Buffer overflow

Buffer overflow in the Lotus Freelance Graphics PRZ file viewer in Autonomy KeyView, as used in Symantec Mail Security SMS 6.x through 8.x, Symantec Brightmail and Messaging Gateway before 9.5.1, and Symantec Data Loss Prevention DLP before 10.5.3 and 11.x before 11.1, allows remote attackers to...

9.3CVSS8.4AI score0.05137EPSS
Exploits0References5Affected Software3
Cvelist
Cvelist
added 2011/07/18 10:0 p.m.27 views

CVE-2011-0548

Buffer overflow in the Lotus Freelance Graphics PRZ file viewer in Autonomy KeyView, as used in Symantec Mail Security SMS 6.x through 8.x, Symantec Brightmail and Messaging Gateway before 9.5.1, and Symantec Data Loss Prevention DLP before 10.5.3 and 11.x before 11.1, allows remote attackers to...

7.8AI score0.05137EPSS
Exploits0References5
CVE
CVE
added 2011/07/18 10:0 p.m.69 views

CVE-2011-0548

CVE-2011-0548 concerns a buffer overflow in the Lotus Freelance Graphics PRZ file viewer component of Autonomy KeyView, used in Symantec Mail Security (SMS) 6.x–8.x, Symantec Brightmail and Messaging Gateway pre-9.5.1, and Symantec DLP pre-10.5.3 and 11.x pre-11.1. The vulnerability allows a remo...

9.3CVSS8.1AI score0.05137EPSS
Exploits0References5Affected Software1
Symantec
Symantec
added 2011/05/31 8:0 a.m.38 views

Multi-Vendor Autonomy Verity Keyview PRZ Reader Filter Overflow

SUMMARY Symantec products that ship with the Verity KeyView Filter have updated the module to address a security issue being reported in the content filter processing of specifically crafted document formats. AFFECTED PRODUCTS Product | Version | Build | Solutions ---|---|---|--- Symantec Mail...

9.3CVSS7.3AI score0.05137EPSS
Exploits0Affected Software1
Cvelist
Cvelist
added 2004/09/01 4:0 a.m.19 views

CVE-2002-1252

The Application Messaging Gateway for PeopleTools 8.1x before 8.19, as used in various PeopleSoft products, allows remote attackers to read arbitrary files via certain XML External Entities XXE fields in an HTTP POST request that is processed by the SimpleFileHandler handler...

6.8AI score0.01373EPSS
Exploits0References3
CVE
CVE
added 2004/09/01 4:0 a.m.45 views

CVE-2002-1252

The CVE-2002-1252 entry concerns the Application Messaging Gateway for PeopleTools 8.1x (used in PeopleSoft products). Affected component/attack surface involves XML External Entities (XXE) fields in an HTTP POST processed by the SimpleFileHandler, allowing remote attackers to read arbitrary file...

5CVSS7.2AI score0.01373EPSS
Exploits0References3Affected Software1
securityvulns
securityvulns
added 2003/01/21 12:0 a.m.38 views

ISS Security Brief: PeopleSoft XML External Entities Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Internet Security Systems Security Brief January 20, 2003 PeopleSoft XML External Entities Vulnerability Synopsis: ISS X-Force has discovered a flaw in the PeopleSoft Application Messaging Gateway. PeopleSoft enterprise software enables the management of all...

6.7AI score
Exploits0
Rows per page
Query Builder