Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Symantec Messaging Gateway product prior to 10.6.6 may be susceptible to a XML external entity (XXE) exploit, which is a type of issue where XML input containing a reference to an external entity is processed by a weakly configured XML parser. The attack uses file URI schemes or relative paths in the system identifier to access files that should not normally be accessible.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Symantec Messaging Gateway 安全漏洞
Vulnerability Description
Symantec Messaging Gateway是美国赛门铁克(Symantec)公司的一套集反垃圾邮件、防病毒、高级内容过滤和数据泄露防护技术于一体的垃圾邮件过滤器。 Symantec Messaging Gateway 10.6.6之前版本中存在XML外部实体注入漏洞。攻击者可借助文件URI schemes或相对路径利用该漏洞访问一些无法访问的文件。
CVSS Information
N/A
Vulnerability Type
N/A