Symantec Management Console Multiple XSS and XXE Vulnerabilities (SYM17-005)
High Nessus Plugin ID 102203
SynopsisThe Symantec Management Console on the target host is affected by multiple XSS and XXE vulnerabilities.
DescriptionThe version of Symantec Manager Console running on the remote host is earlier then ITM 8.1 RU1, ITMS 8.0_POST_HF6 or ITMS 7.6_POST_HF7 and is therefore affected by multiple cross-site scripting (XSS) and XML External Entity (XXE) processing vulnerabilities.
SolutionUpgrade to Symantec Management Console ITMS 8.1 RU1 or later or apply patches ITMS 8.0_POST_HF6 and ITMS 7.6_POST_HF7.