Security Advisory

CVE-2016-3969

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2016-04-06 18:00:00

Last updated 2024-08-06 00:10:31

Assigner mitre

State PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in McAfee Email Gateway (MEG) 7.6.x before 7.6.404, when File Filtering is enabled with the action set to ESERVICES:REPLACE, allows remote attackers to inject arbitrary web script or HTML via an attachment in a blocked email.

← Browse all CVEs View on cve.org ↗