34856

34935

1022136

1022137

1022138

34668

http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2009&suid=20090428_00

ADV-2009-1202

ADV-2009-1204

multiple-symantec-login-spoofing(50172)

The remote host is running Symantec Reporting Server, a component of Symantec AntiVirus Corporate Edition, Symantec Client Security, and Symantec Endpoint Protection Manager that serves to create reports about the use of Symantec antivirus products in an enterprise environment. 

The installed version of Reporting Server includes user-supplied input to the 'MSG' parameter of the 'Reporting/login/login.php' script on the login page.  By tricking an authorized user into clicking on a specially crafted link, an attacker can cause an arbitrary message to be displayed, which in turn could facilitate phishing attacks against the affected site.

CVE-2009-1432

medium

Tenable Plugins

medium