This script is Copyright (C) 2011-2016 Tenable Network Security, Inc.
A web application on the remote Windows host has multiple
The version of Symantec IM Manager running on the remote host is
earlier than 8.4.18. Such versions are affected by the following
vulnerabilities in the management console :
- Multiple XSS. (CVE-2011-0552)
- An unspecified SQL injection. (CVE-2011-0553)
- An unspecified code injection. (CVE-2011-0554)
See also :
Upgrade to Symantec IM Manager 8.4.18 (build 8.4.1405) or later.
Risk factor :
High / CVSS Base Score : 7.5
CVSS Temporal Score : 6.5
Public Exploit Available : true