Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Message_gateway
(Symantec)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 10 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2017-08-11 | CVE-2017-6327 | The Symantec Messaging Gateway before 10.6.3-267 can encounter an issue of remote code execution, which describes a situation whereby an individual may obtain the ability to execute commands remotely on a target machine or in a target process. In this type of occurrence, after gaining access to the system, the attacker may attempt to elevate their privileges. | Message_gateway | 8.8 | ||
| 2016-06-30 | CVE-2016-2207 | The AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) before 12.1 RU6 MP5; Symantec Endpoint Protection (SEP) for Mac; Symantec Endpoint Protection (SEP) for Linux before 12.1 RU6 MP5; Symantec Protection Engine (SPE) before 7.0.5 HF01, 7.5.x before 7.5.3 HF03, 7.5.4 before HF01, and 7.8.0 before HF01; Symantec Protection for SharePoint Servers... | Advanced_threat_protection, Csapi, Data_center_security_server, Endpoint_protection, Mail_security_for_domino, Mail_security_for_microsoft_exchange, Message_gateway, Message_gateway_for_service_providers, Ngc, Norton_360, Norton_antivirus, Norton_bootable_removal_tool, Norton_internet_security, Norton_power_eraser, Norton_security, Norton_security_with_backup, Protection_engine, Protection_for_sharepoint_servers | 8.4 | ||
| 2016-06-30 | CVE-2016-2209 | Buffer overflow in Dec2SS.dll in the AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) before 12.1 RU6 MP5; Symantec Endpoint Protection (SEP) for Mac; Symantec Endpoint Protection (SEP) for Linux before 12.1 RU6 MP5; Symantec Protection Engine (SPE) before 7.0.5 HF01, 7.5.x before 7.5.3 HF03, 7.5.4 before HF01, and 7.8.0 before HF01; Symantec... | Advanced_threat_protection, Csapi, Data_center_security_server, Endpoint_protection, Mail_security_for_domino, Mail_security_for_microsoft_exchange, Message_gateway, Message_gateway_for_service_providers, Ngc, Norton_360, Norton_antivirus, Norton_bootable_removal_tool, Norton_internet_security, Norton_power_eraser, Norton_security, Norton_security_with_backup, Protection_engine, Protection_for_sharepoint_servers | 7.3 | ||
| 2016-06-30 | CVE-2016-2210 | Buffer overflow in Dec2LHA.dll in the AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) before 12.1 RU6 MP5; Symantec Endpoint Protection (SEP) for Mac; Symantec Endpoint Protection (SEP) for Linux before 12.1 RU6 MP5; Symantec Protection Engine (SPE) before 7.0.5 HF01, 7.5.x before 7.5.3 HF03, 7.5.4 before HF01, and 7.8.0 before HF01; Symantec... | Advanced_threat_protection, Csapi, Data_center_security_server, Endpoint_protection, Mail_security_for_domino, Mail_security_for_microsoft_exchange, Message_gateway, Message_gateway_for_service_providers, Ngc, Norton_360, Norton_antivirus, Norton_bootable_removal_tool, Norton_internet_security, Norton_power_eraser, Norton_security, Norton_security_with_backup, Protection_engine, Protection_for_sharepoint_servers | 7.3 | ||
| 2016-06-30 | CVE-2016-2211 | The AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) before 12.1 RU6 MP5; Symantec Endpoint Protection (SEP) for Mac; Symantec Endpoint Protection (SEP) for Linux before 12.1 RU6 MP5; Symantec Protection Engine (SPE) before 7.0.5 HF01, 7.5.x before 7.5.3 HF03, 7.5.4 before HF01, and 7.8.0 before HF01; Symantec Protection for SharePoint Servers... | Advanced_threat_protection, Csapi, Data_center_security_server, Endpoint_protection, Mail_security_for_domino, Mail_security_for_microsoft_exchange, Message_gateway, Message_gateway_for_service_providers, Ngc, Norton_360, Norton_antivirus, Norton_bootable_removal_tool, Norton_internet_security, Norton_power_eraser, Norton_security, Norton_security_with_backup, Protection_engine, Protection_for_sharepoint_servers | 7.8 | ||
| 2016-06-30 | CVE-2016-3646 | The AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) before 12.1 RU6 MP5; Symantec Endpoint Protection (SEP) for Mac; Symantec Endpoint Protection (SEP) for Linux before 12.1 RU6 MP5; Symantec Protection Engine (SPE) before 7.0.5 HF01, 7.5.x before 7.5.3 HF03, 7.5.4 before HF01, and 7.8.0 before HF01; Symantec Protection for SharePoint Servers... | Advanced_threat_protection, Csapi, Data_center_security_server, Endpoint_protection, Mail_security_for_domino, Mail_security_for_microsoft_exchange, Message_gateway, Message_gateway_for_service_providers, Ngc, Norton_360, Norton_antivirus, Norton_bootable_removal_tool, Norton_internet_security, Norton_power_eraser, Norton_security, Norton_security_with_backup, Protection_engine, Protection_for_sharepoint_servers | 8.4 | ||
| 2016-06-30 | CVE-2016-3645 | Integer overflow in the TNEF unpacker in the AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) before 12.1 RU6 MP5; Symantec Endpoint Protection (SEP) for Mac; Symantec Endpoint Protection (SEP) for Linux before 12.1 RU6 MP5; Symantec Protection Engine (SPE) before 7.0.5 HF01, 7.5.x before 7.5.3 HF03, 7.5.4 before HF01, and 7.8.0 before HF01;... | Advanced_threat_protection, Csapi, Data_center_security_server, Endpoint_protection, Mail_security_for_domino, Mail_security_for_microsoft_exchange, Message_gateway, Message_gateway_for_service_providers, Ngc, Norton_360, Norton_antivirus, Norton_bootable_removal_tool, Norton_internet_security, Norton_power_eraser, Norton_security, Norton_security_with_backup, Protection_engine, Protection_for_sharepoint_servers | 9.8 | ||
| 2016-06-30 | CVE-2016-3644 | The AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) before 12.1 RU6 MP5; Symantec Endpoint Protection (SEP) for Mac; Symantec Endpoint Protection (SEP) for Linux before 12.1 RU6 MP5; Symantec Protection Engine (SPE) before 7.0.5 HF01, 7.5.x before 7.5.3 HF03, 7.5.4 before HF01, and 7.8.0 before HF01; Symantec Protection for SharePoint Servers... | Advanced_threat_protection, Csapi, Data_center_security_server, Endpoint_protection, Mail_security_for_domino, Mail_security_for_microsoft_exchange, Message_gateway, Message_gateway_for_service_providers, Ngc, Norton_360, Norton_antivirus, Norton_bootable_removal_tool, Norton_internet_security, Norton_power_eraser, Norton_security, Norton_security_with_backup, Protection_engine, Protection_for_sharepoint_servers | 8.4 | ||
| 2019-07-11 | CVE-2019-12751 | Symantec Messaging Gateway, prior to 10.7.1, may be susceptible to a privilege escalation vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated access to resources that are normally protected from an application or user. | Message_gateway | 9.8 | ||
| 2017-08-11 | CVE-2017-6328 | The Symantec Messaging Gateway before 10.6.3-267 can encounter an issue of cross site request forgery (also known as one-click attack and is abbreviated as CSRF or XSRF), which is a type of malicious exploit of a website where unauthorized commands are transmitted from a user that the web application trusts. A CSRF attack attempts to exploit the trust that a specific website has in a user's browser. | Message_gateway | 8.8 |