Initial Publication Date: Advisory Status: Advisory Severity: CVSS Base Score:Legacy ID
17 May 2018 Closed High CVSS v2: 8.3 SA149
The Symantec Content Analysis (CA) and Mail Threat Defense (MTD) management consoles are susceptible to a cross-site request forging (CSRF) vulnerability. A remote attacker can use phishing or other social engineering techniques to access the management console with the privileges of an authenticated administrator user.
Content Analysis (CA)
2.2 and later
Not vulnerable, full fix available in 220.127.116.11.
Partial fix available in 18.104.22.168.
Partial fix avaialble in 22.214.171.124.
Mail Threat Defense (MTD)
Upgrade to CA 2.2 (or later) and SMG 10.6.3 (or later)
Additional Product Information
Only the CA management console is affected. The CA management console web browser client application in CA 126.96.36.199 and 188.8.131.52 opt-ins to use CSRF protection. The full fix in CA 2.2 requires CSRF protection for all CA management console clients.
MTD has been obsoleted by CA and the Symantec Messaging Gateway (SMG). Symantec recommends that MTD customers transition to CA 2.2 (or above) and SMG 10.6.3 (or above) to get the latest functionality and vulnerability fixes.
A remote, unauthenticated attacker can target an authenticated administrator user with phishing or other social engineering techniques, and trick them into clicking on a malicious link or visiting a malicious site. This allows the attacker to access the management console with the privileges of the authenticated user.
Thanks to Peter Paccione, Chris Hebert, and Corey Boyd for reporting this vulnerability.
2018-05-17 initial public release
This is machine translated content
Login to Subscribe
Please login to set up your
Would you like to be subscribed to future notifications for this article?
For security reasons, your link to this document has expired. Please click on the attachment link to access this file.
The attachment that you are looking for no longer exists.
There has been an issue retrieving your attachment. Please try again.
Currently server is down.
Didn't find the article you were looking for? Try these resources.