Max CVSS 7.9 Min CVSS 3.3 Total Count2
IDCVSSSummaryLast (major) updatePublished
CVE-2012-3579 7.9
Symantec Messaging Gateway (SMG) before 10.0 has a default password for an unspecified account, which makes it easier for remote attackers to obtain privileged access via an SSH session.
29-08-2017 - 01:31 29-08-2012 - 10:56
CVE-2012-3580 7.7
Symantec Messaging Gateway (SMG) before 10.0 allows remote authenticated users to modify the web application by leveraging access to the management interface.
29-08-2017 - 01:31 29-08-2012 - 10:56
CVE-2012-0307 4.3
Multiple cross-site scripting (XSS) vulnerabilities in Symantec Messaging Gateway (SMG) before 10.0 allow remote attackers to inject arbitrary web script or HTML via (1) web content or (2) e-mail content.
29-08-2017 - 01:30 29-08-2012 - 10:56
CVE-2012-4347 5.0
Multiple directory traversal vulnerabilities in the management console in Symantec Messaging Gateway (SMG) 9.5.x allow remote authenticated users to read arbitrary files via a .. (dot dot) in the (1) logFile parameter in a logs action to brightmail/e
11-10-2013 - 13:18 05-12-2012 - 11:57
CVE-2012-3581 3.3
Symantec Messaging Gateway (SMG) before 10.0 allows remote attackers to obtain potentially sensitive information about component versions via unspecified vectors.
10-10-2013 - 20:48 29-08-2012 - 10:56
CVE-2012-0308 6.8
Cross-site request forgery (CSRF) vulnerability in Symantec Messaging Gateway (SMG) before 10.0 allows remote attackers to hijack the authentication of administrators.
03-10-2013 - 18:00 29-08-2012 - 10:56
Back to Top Mark selected
Back to Top