The Symantec Messaging Gateway before 10.6.3-267 can encounter an issue of cross site request forgery (also known as one-click attack and is abbreviated as CSRF or XSRF), which is a type of malicious exploit of a website where unauthorized commands are transmitted from a user that the web application trusts. A CSRF attack attempts to exploit the trust that a specific website has in a user's browser.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/100136 | Third Party Advisory VDB Entry |
https://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20170810_00 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: symantec
Published: 2017-08-10T00:00:00
Updated: 2017-08-12T09:57:01
Reserved: 2017-02-26T00:00:00
Link: CVE-2017-6328
JSON object: View
NVD Information
Status : Analyzed
Published: 2017-08-11T20:29:00.237
Modified: 2017-08-24T19:57:35.500
Link: CVE-2017-6328
JSON object: View
Redhat Information
No data.
CWE