Vulnerability in Symantec Gateway_security_5400
CVE-2004-0192
Cross-site scripting (XSS) vulnerability in the Management Service for Symantec Gateway Security 2.0 allows remote attackers to steal cookies and hijack a management session via a /sgmi URL that contains malicious script, which is not quot…
EPSS: 0.045 (90.2th percentile) — read the EPSS interpretation.
Affected products
- Symantec Gateway_security_5400 — versions 2.0
- N/a — versions n/a
References
- cve@mitre.org (Exploit, Patch, vdb-entry, x_refsource_BID, Vendor Advisory)
- cve@mitre.org (vdb-entry, x_refsource_XF)
- cve@mitre.org (mailing-list, x_refsource_BUGTRAQ)