24 matches found
EUVD-2013-4527
Malware in sbrugna...
EUVD-2015-8041
Malware in sbrugna...
EUVD-2018-17025
Malware in sbrugna...
EUVD-2014-1717
Malware in sbrugna...
EUVD-2015-8040
Malware in sbrugna...
EUVD-2015-8038
Malware in sbrugna...
EUVD-2015-8039
Malware in sbrugna...
CVE-2018-5243
CVE-2018-5243 affects the Symantec Encryption Management Server (SEMS) prior to version 3.4.2 MP1 . The issue is described as a denial-of-service vulnerability; the exact root cause is not detailed in the provided documents. Impact is listed as DoS with partial to high availability impact dependi...
CVE-2018-5243
The Symantec Encryption Management Server SEMS product, prior to version 3.4.2 MP1, may be susceptible to a denial of service DoS exploit. A DoS attack is a type of attack whereby the perpetrator attempts to make a particular machine or network resource unavailable to its intended users by...
Symantec Encryption Management Server - Denial of Service
SUMMARY Symantec has released an update to address an issue in the Symantec Encryption Management Server product. AFFECTED PRODUCTS Symantec Encryption Management Server SEMS --- CVE | Affected Versions | Remediation CVE-2018-5243 | Prior to 3.4.2 MP1 | Upgrade to 3.4.2 MP1 ISSUES CVE-2018-5243 -...
Symantec Encryption Management Server Server Multiple Security Issues
The management console for Symantec Encryption Management Server SEMS is susceptible to potential OS command execution, local access elevation of privilege, a heap-based memory corruption resulting in a service crash and potential information disclosure of management console logon/account...
CVE-2015-8151
Symantec Encryption Management Server SEMS 3.3.2 before MP12 allows remote authenticated users to execute arbitrary OS commands by leveraging console administrator access...
Memory corruption
The LDAP service in Symantec Encryption Management Server SEMS 3.3.2 before MP12 allows remote attackers to cause a denial of service heap memory corruption and service outage via crafted requests...
Symantec Encryption Management Server < 3.3.2 MP7 Multiple Vulnerabilities
The version of Symantec Encryption Management Server listening on the remote host is prior to version 3.3.2 MP7. It is, therefore, affected by multiple vulnerabilities : - A flaw exists in the handling of specially formatted PGP keys to the integrated key management server. This allows a remote...
Symantec Encryption Management Server Database Backup Command Line Injection and Email Header Inject
SUMMARY Symantec Encryption Management Server is susceptible to a shell command line injection when an authorized, but less privileged administrator, is submitting a request for a database backup. This could potentially result in the malicious administrator gaining privileged access on the server...
Symantec Encryption Management Server < 3.3.2 Information Disclosure
The version of Symantec Encryption Management Server listening on the remote host is earlier than version 3.3.2. It is, therefore, affected by an information disclosure vulnerability due to a flaw in the Web Email Protection component. A remote, authenticated attacker could potentially exploit th...
CVE-2014-1643
The Web Email Protection component in Symantec Encryption Management Server aka PGP Universal Server before 3.3.2 allows remote authenticated users to read the stored outbound e-mail messages of arbitrary users via a modified URL...
Code injection
The Web Email Protection component in Symantec Encryption Management Server aka PGP Universal Server before 3.3.2 allows remote authenticated users to read the stored outbound e-mail messages of arbitrary users via a modified URL...
Symantec Encryption Management Server Web Email Protection View User’s Email
SUMMARY Symantec Encryption Management Server was susceptible to an authorized/authenticated web console user being able to view any other users stored outbound emails. The issue is in the Web Email Protection component not sufficiently restricting authorized user content access. This could allow...
CVE-2013-4674
Cross-site scripting XSS vulnerability in the Web Email Protection component in Symantec Encryption Management Server formerly Symantec PGP Universal Server before 3.3.0 MP2 allows remote authenticated users to inject arbitrary web script or HTML via a crafted encrypted e-mail attachment...