3 matches found
CVE-2016-6590
The CVE-2016-6590 issue is a local privilege-escalation caused by loading DLLs during boot/reboot without absolute paths in multiple Symantec products. Affected: IT Management Suite 8.0 (before HF4), ITMS 7.6 (before HF7); Ghost Solution Suite 3.1 (before MP4); Endpoint Virtualization 7.x (before...
CVE-2016-6588
CVE-2016-6588 affects Symantec IT Management Suite 8.0 in the ITMS workflow process manager console. The vulnerability arises from insufficient input validation/filtering in HTTP requests, enabling a reflected cross-site scripting (XSS) attack when an authenticated user clicks a malicious link or...
CVE-2016-6589
CVE-2016-6589 is a Denial of Service vulnerability in the Symantec IT Management Suite 8.0, specifically in the ITMS workflow process manager console login window. Public entries describe that an authorized network user could input excessive data into the login/process console, leading to reduced...