CVE-2016-9099
First published: Thu May 11 2017(Updated: )
Symantec Advanced Secure Gateway (ASG) 6.6, ASG 6.7 prior to 6.7.2.1, ProxySG 6.5 prior to 6.5.10.6, ProxySG 6.6, and ProxySG 6.7 prior to 6.7.2.1 are susceptible to an open redirection vulnerability. A remote attacker can use a crafted management console URL in a phishing attack to redirect the target user to a malicious web site.
Credit: secure@symantec.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Broadcom Advanced Secure Gateway | >=6.7<6.7.2.1 | |
| Broadcom Symantec Proxysg | >=6.5<6.5.10.6 | |
| Broadcom Advanced Secure Gateway | =6.6 | |
| Broadcom Symantec Proxysg | =6.6 | |
| Broadcom Symantec Proxysg | >=6.7<6.7.2.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/references
- agent/type
- agent/event
- agent/weakness
- agent/severity
- agent/author
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/broadcom
- canonical/broadcom advanced secure gateway
- version/broadcom advanced secure gateway/6.7
- canonical/broadcom symantec proxysg
- version/broadcom symantec proxysg/6.5
- version/broadcom advanced secure gateway/6.6
- version/broadcom symantec proxysg/6.6
- version/broadcom symantec proxysg/6.7