Symantec Messaging Gateway CVE-2018-12243 XML External Entity Injection Vulnerability
BID:105330
CVE-2018-12243 |Info
Symantec Messaging Gateway CVE-2018-12243 XML External Entity Injection Vulnerability
| Bugtraq ID: | 105330 |
| Class: | Unknown |
| CVE: |
CVE-2018-12243 |
| Remote: | Yes |
| Local: | No |
| Published: | Sep 19 2018 12:00AM |
| Updated: | Sep 19 2018 12:00AM |
| Credit: | Artem Kondratenko, Arseny Sharoglazov, Alexey Osipov from Kaspersky Lab Security Services @kl_secservices |
| Vulnerable: |
Symantec Messaging Gateway 10.6.3 Symantec Messaging Gateway 10.5.2 Symantec Messaging Gateway 10.5.1 Symantec Messaging Gateway 10.5 Symantec Messaging Gateway 10.0.1 Symantec Messaging Gateway 9.5.4 Symantec Messaging Gateway 9.5.3 Symantec Messaging Gateway 9.5.3-3 Symantec Messaging Gateway 9.5.2 Symantec Messaging Gateway 9.5.1 Symantec Messaging Gateway 9.5 Symantec Messaging Gateway 10.6.5 Symantec Messaging Gateway 10.6.4 Symantec Messaging Gateway 10.6.3-267 Symantec Messaging Gateway 10.6.3-266 Symantec Messaging Gateway 10.6.2 Symantec Messaging Gateway 10.6.1-3 Symantec Messaging Gateway 10.6.1 Symantec Messaging Gateway 10.6.0-7 Symantec Messaging Gateway 10.6.0-3 Symantec Messaging Gateway 10.6 Symantec Messaging Gateway 10.1 Symantec Messaging Gateway 10.0.3 Symantec Messaging Gateway 10.0.2 Symantec Messaging Gateway 10.0 |
| Not Vulnerable: |
Symantec Messaging Gateway 10.6.6 |
Exploit / POC
Symantec Messaging Gateway CVE-2018-12243 XML External Entity Injection Vulnerability
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].