Multiple cross-site scripting (XSS) vulnerabilities in ccLgView.exe in the Symantec Log Viewer, as used in Symantec AntiVirus (SAV) before 10.1 MR8, Symantec Endpoint Protection (SEP) 11.0 before 11.0 MR1, Norton 360 1.0, and Norton Internet Security 2005 through 2008, allow remote attackers to inject arbitrary web script or HTML via a crafted e-mail message, related to "two parsing errors."
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2009-04-29T15:00:00
Updated: 2024-08-07T05:13:25.574Z
Reserved: 2009-04-24T00:00:00
Link: CVE-2009-1428
Vulnrichment
No data.
NVD
Status : Modified
Published: 2009-04-29T15:30:00.203
Modified: 2017-08-17T01:30:20.617
Link: CVE-2009-1428
Redhat
No data.