Symantec Data Loss Prevention CVE-2015-1485 Cross Site Request Forgery Vulnerability

Symantec Data Loss Prevention is prone to a cross-site request-forgery vulnerability because it does not properly validate user-supplied requests.

Exploiting this issue may allow a remote attacker to perform certain unauthorized actions and gain access to the affected appliance. Other attacks are also possible.

Symantec Data Loss Prevention 12.5.1 and prior are vulnerable.


 

Privacy Statement
Copyright 2010, SecurityFocus