CVE-2016-9100

Summary

Symantec Advanced Secure Gateway (ASG) 6.6 prior to 6.6.5.13, ASG 6.7 prior to 6.7.3.1, ProxySG 6.5 prior to 6.5.10.6, ProxySG 6.6 prior to 6.6.5.13, and ProxySG 6.7 prior to 6.7.3.1 are susceptible to an information disclosure vulnerability. An attacker with local access to the client host of an authenticated administrator user can, under certain circumstances, obtain sensitive authentication credential information.

Affected Software

VendorProductVersion RangeStatus
Symantec CorporationASG6.6 prior to 6.6.5.13affected
Symantec CorporationASG6.7 prior to 6.7.3.1affected
Symantec CorporationProxySG6.5 prior to 6.5.10.6affected
Symantec CorporationProxySG6.6 prior to 6.6.5.13affected
Symantec CorporationProxySG6.7 prior to 6.7.3.1affected

Weaknesses

  • Information disclosure

ADP Enrichment

CVE Program Container

Additional References

References