← Back

CVE-2016-2203

nvd nist
Published: Apr 22, 2016Modified: May 6, 2026

JSON object

Loading...
7.8
Vector
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Exploitability: 1.8 / Impact: 5.9
Source: NVD

Description

The management console on Symantec Messaging Gateway (SMG) Appliance devices before 10.6.1 allows local users to discover an encrypted AD password by leveraging certain read privileges.

Affected (3)

Symantec
1 product
Messaging Gateway
Configuration A
3 vulnerable
Vulnerable SoftwareAffected Versions
Symantec
Messaging Gateway
Version 10.6.0 patch3
Messaging Gateway
Version 10.6.0 patch5
Messaging Gateway
Version 10.6.0 patch7

Related CWEs

CWE-255
CWE-255

References (10)

Source: secure@symantec.com
ExploitThird Party AdvisoryVDB Entry
Source: secure@symantec.com
ExploitThird Party AdvisoryVDB Entry
Source: secure@symantec.com
Third Party AdvisoryVDB Entry
Source: secure@symantec.com
Vendor Advisory
Source: secure@symantec.com
ExploitThird Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitThird Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitThird Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitThird Party AdvisoryVDB Entry

Timeline

No history available yet.