The management console on Symantec Messaging Gateway (SMG) Appliance devices before 10.6.1 allows local users to discover an encrypted AD password by leveraging certain read privileges.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Messaging_gateway | Symantec | 10.6.0-patch3 (including) | 10.6.0-patch3 (including) |
| Messaging_gateway | Symantec | 10.6.0-patch5 (including) | 10.6.0-patch5 (including) |
| Messaging_gateway | Symantec | 10.6.0-patch7 (including) | 10.6.0-patch7 (including) |
References
- http://packetstormsecurity.com/files/136758/Symantec-Brightmail-10.6.0-7-LDAP-Credential-Grabber.html
- http://www.securityfocus.com/bid/86137
- http://www.securitytracker.com/id/1035609
- http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026pvid=security_advisory\u0026year=\u0026suid=20160418_00
- https://www.exploit-db.com/exploits/39715/
- http://packetstormsecurity.com/files/136758/Symantec-Brightmail-10.6.0-7-LDAP-Credential-Grabber.html
- http://www.securityfocus.com/bid/86137
- http://www.securitytracker.com/id/1035609
- http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory\u0026pvid=security_advisory\u0026year=\u0026suid=20160418_00
- https://www.exploit-db.com/exploits/39715/