Unrated severityNVD Advisory· Published Mar 15, 2004· Updated Apr 16, 2026
CVE-2004-0192
CVE-2004-0192
Description
Cross-site scripting (XSS) vulnerability in the Management Service for Symantec Gateway Security 2.0 allows remote attackers to steal cookies and hijack a management session via a /sgmi URL that contains malicious script, which is not quoted in the resulting error page.
Affected products
1- cpe:2.3:h:symantec:gateway_security_5400:2.0:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3- www.securityfocus.com/bid/9755nvdExploitPatchVendor Advisory
- marc.infonvd
- exchange.xforce.ibmcloud.com/vulnerabilities/15330nvd
News mentions
0No linked articles in our index yet.