McAfee Email Gateway 7.6.x < 7.6.404 Blocked Email Alert XSS (SB10153)
Medium Nessus Plugin ID 90835
SynopsisThe application installed on the remote host is affected by a cross-site scripting vulnerability.
DescriptionThe version of McAfee Email Gateway (MEG) installed on the remote host is 7.6.x prior to 7.6.404. It is, therefore, affected by a cross-site scripting (XSS) vulnerability that is triggered when File Filtering is enabled with the action set to 'ESERVICES:REPLACE'. This is due to a failure to validate input passed via alerts for blocked email attachments; attachments are displayed 'as is' without the XML or HTML content being properly escaped. An unauthenticated, remote attacker can exploit this, via a crafted email attachment, to execute arbitrary script code in a user's browser session.
SolutionUpgrade to McAfee Email Gateway version 7.6.404 as referenced in the vendor advisory.