CVE-2016-9100
N/A
N/A
Summary
Symantec Advanced Secure Gateway (ASG) 6.6 prior to 6.6.5.13, ASG 6.7 prior to 6.7.3.1, ProxySG 6.5 prior to 6.5.10.6, ProxySG 6.6 prior to 6.6.5.13, and ProxySG 6.7 prior to 6.7.3.1 are susceptible to an information disclosure vulnerability. An attacker with local access to the client host of an authenticated administrator user can, under certain circumstances, obtain sensitive authentication credential information.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Symantec Corporation | ASG | 6.6 prior to 6.6.5.13 | affected |
| Symantec Corporation | ASG | 6.7 prior to 6.7.3.1 | affected |
| Symantec Corporation | ProxySG | 6.5 prior to 6.5.10.6 | affected |
| Symantec Corporation | ProxySG | 6.6 prior to 6.6.5.13 | affected |
| Symantec Corporation | ProxySG | 6.7 prior to 6.7.3.1 | affected |
Weaknesses
- Information disclosure
ADP Enrichment
CVE Program Container
Additional References
- http://www.securitytracker.com/id/1040138
- https://www.symantec.com/security-center/network-protection-security-advisories/SA155
- http://www.securityfocus.com/bid/102454
References
- http://www.securitytracker.com/id/1040138
- https://www.symantec.com/security-center/network-protection-security-advisories/SA155
- http://www.securityfocus.com/bid/102454
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.