CVE-2016-9092

Summary

The Symantec Content Analysis (CA) 1.3, 2.x prior to 2.2.1.1, and Mail Threat Defense (MTD) 1.1 management consoles are susceptible to a cross-site request forging (CSRF) vulnerability. A remote attacker can use phishing or other social engineering techniques to access the management console with the privileges of an authenticated administrator user.

Affected Software

VendorProductVersion RangeStatus
Symantec CorporationContent Analysis (CA)1.3affected
Symantec CorporationContent Analysis (CA)2.x prior to 2.2.1.1affected
Symantec CorporationMail Threat Defense (MTD)1.1affected

Weaknesses

  • Cross-site request forgery

ADP Enrichment

CVE Program Container

Additional References

References