CVE-2016-10257
Published: Jan 10, 2018
Modified: Sep 16, 2024
Description
The Symantec Advanced Secure Gateway (ASG) 6.6, ASG 6.7 (prior to 6.7.2.1), ProxySG 6.5 (prior to 6.5.10.6), ProxySG 6.6, and ProxySG 6.7 (prior to 6.7.2.1) management console is susceptible to a reflected XSS vulnerability. A remote attacker can use a crafted management console URL in a phishing attack to inject arbitrary JavaScript code into the management console web client application. This is a separate vulnerability from CVE-2016-10256.
| Vendor | Product | Versions |
|---|---|---|
Symantec Corporation | ASG | affected 6.6affected 6.7 prior to 6.7.2.1 |
Symantec Corporation | ProxySG | affected 6.5 prior to 6.5.10.6affected 6.6affected 6.7 prior to 6.7.2.1 |
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now