Cross-site scripting (XSS) vulnerability in the Web Email Protection component in Symantec Encryption Management Server (formerly Symantec PGP Universal Server) prior to 3.3.0 MP2 allows remote authenticated users to inject arbitrary web script or HTML via a crafted encrypted e-mail attachment.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
symantec pgp universal server 3.2.0 |
||
symantec pgp universal server 3.2.1 |
||
symantec encryption management server 3.3.0 |
||
symantec encryption management server |