Published: 11/08/2017 Updated: 24/08/2017

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8

VMScore: 685

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

The Symantec Messaging Gateway prior to 10.6.3-267 can encounter an issue of cross site request forgery (also known as one-click attack and is abbreviated as CSRF or XSRF), which is a type of malicious exploit of a website where unauthorized commands are transmitted from a user that the web application trusts. A CSRF attack attempts to exploit the trust that a specific website has in a user's browser.

Vulnerable Product	Search on Vulmon	Subscribe to Product
symantec message gateway

# Exploit Title: CSRF # Date: August 9, 2017 # Software Link: wwwsymanteccom/products/messaging-gateway # Exploit Author: Dhiraj Mishra # Contact: twittercom/mishradhiraj_ # Website: datariftblogspotin/ # CVE: CVE-2017-6328 # Category: Symantec Messaging Gateway 1 Description The Symantec Messaging Gateway can enco ...

CWE-352 https://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20170810_00 http://www.securityfocus.com/bid/100136 https://nvd.nist.gov https://www.exploit-db.com/exploits/42613/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2017-6328

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect