This script is Copyright (C) 2010-2016 Tenable Network Security, Inc.
A web application on the remote Windows host may be affected by
multiple SQL injection vulnerabilities.
The version of Symantec IM Manager installed on the remote Windows
host is earlier than 8.4.16. Such versions are reportedly affected by
multiple SQL injection vulnerabilities in its administration console.
An unauthenticated, remote attacker may be able to exploit these issues
to compromise the application's database.
See also :
Upgrade to Symantec IM Manager 8.4.16 (build 8.4.1393) or later.
Risk factor :
Critical / CVSS Base Score : 10.0
CVSS Temporal Score : 8.3
Public Exploit Available : true