VYPR
Unrated severityNVD Advisory· Published Mar 15, 2004· Updated Jun 16, 2026

CVE-2004-0192

CVE-2004-0192

Description

Cross-site scripting (XSS) vulnerability in the Management Service for Symantec Gateway Security 2.0 allows remote attackers to steal cookies and hijack a management session via a /sgmi URL that contains malicious script, which is not quoted in the resulting error page.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • cpe:2.3:h:symantec:gateway_security_5400:2.0:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:h:symantec:gateway_security_5400:2.0:*:*:*:*:*:*:*
    • (no CPE)range: =2.0

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.