Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

symantec messaging gateway 10.0 vulnerabilities and exploits

(subscribe to this query)
NA
CVE-2012-0308
Cross-site request forgery (CSRF) vulnerability in Symantec Messaging Gateway (SMG) prior to 10.0 allows remote malicious users to hijack the authentication of administrators.
Symantec Messaging GatewaySymantec Messaging Gateway 9.5.2Symantec Messaging Gateway 9.5Symantec Messaging Gateway 10.0Symantec Messaging Gateway 9.5.3Symantec Messaging Gateway 9.5.1
NA
CVE-2014-1648
Cross-site scripting (XSS) vulnerability in brightmail/setting/compliance/DlpConnectFlow$view.flo in the management console in Symantec Messaging Gateway 10.x prior to 10.5.2 allows remote malicious users to inject arbitrary web script or HTML via the displayTab parameter.
Symantec Messaging Gateway 10.5.1Symantec Messaging Gateway 10.5.0Symantec Messaging Gateway 10.0.1Symantec Messaging Gateway 10.0.2Symantec Messaging Gateway 10.0.3Symantec Messaging Gateway 10.0
NA
CVE-2012-3581
Symantec Messaging Gateway (SMG) prior to 10.0 allows remote malicious users to obtain potentially sensitive information about component versions via unspecified vectors.
Symantec Messaging Gateway 9.5.2Symantec Messaging Gateway 9.5Symantec Messaging GatewaySymantec Messaging Gateway 9.5.3Symantec Messaging Gateway 9.5.1
NA
CVE-2012-3580
Symantec Messaging Gateway (SMG) prior to 10.0 allows remote authenticated users to modify the web application by leveraging access to the management interface.
Symantec Messaging GatewaySymantec Messaging Gateway 9.5.1Symantec Messaging Gateway 9.5Symantec Messaging Gateway 9.5.3Symantec Messaging Gateway 9.5.2
NA
CVE-2012-3579
Symantec Messaging Gateway (SMG) prior to 10.0 has a default password for an unspecified account, which makes it easier for remote malicious users to obtain privileged access via an SSH session.
Symantec Messaging GatewaySymantec Messaging Gateway 9.5.3Symantec Messaging Gateway 9.5.2Symantec Messaging Gateway 9.5.1Symantec Messaging Gateway 9.5
NA
CVE-2012-0307
Multiple cross-site scripting (XSS) vulnerabilities in Symantec Messaging Gateway (SMG) prior to 10.0 allow remote malicious users to inject arbitrary web script or HTML via (1) web content or (2) e-mail content.
Symantec Messaging GatewaySymantec Messaging Gateway 9.5.3Symantec Messaging Gateway 9.5.2Symantec Messaging Gateway 9.5.1Symantec Messaging Gateway 9.5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322CVE-2006-4304wirelessCVE-2023-23022local file inclusionCVE-2024-27058CVE-2024-33820open redirectCVE-2024-27079
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook