CVE-2013-4674
N/A
N/A
Summary
Cross-site scripting (XSS) vulnerability in the Web Email Protection component in Symantec Encryption Management Server (formerly Symantec PGP Universal Server) before 3.3.0 MP2 allows remote authenticated users to inject arbitrary web script or HTML via a crafted encrypted e-mail attachment.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://www.securityfocus.com/bid/61290
- https://exchange.xforce.ibmcloud.com/vulnerabilities/85902
- http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20130722_00
- http://secunia.com/advisories/54214
- http://osvdb.org/95581
- http://www.securitytracker.com/id/1028820
References
- http://www.securityfocus.com/bid/61290
- https://exchange.xforce.ibmcloud.com/vulnerabilities/85902
- http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20130722_00
- http://secunia.com/advisories/54214
- http://osvdb.org/95581
- http://www.securitytracker.com/id/1028820
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.