Cross-site scripting (XSS) vulnerability in McAfee Email and Web Security (EWS) 5.x prior to 5.5 Patch 6 and 5.6 before Patch 3, and McAfee Email Gateway (MEG) 7.0 before Patch 1, allows remote malicious users to inject arbitrary web script or HTML via vectors related to the McAfee Security Appliance Management Console/Dashboard.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mcafee email and web security 5.0 |
||
mcafee email and web security 5.6 |
||
mcafee email gateway 7.0 |
||
mcafee email and web security 5.5 |