Medium severity6.1NVD Advisory· Published Jan 10, 2018· Updated Jun 17, 2026
CVE-2016-10256
CVE-2016-10256
Description
The Symantec ProxySG 6.5 (prior to 6.5.10.6), 6.6, and 6.7 (prior to 6.7.2.1) management console is susceptible to a reflected XSS vulnerability. A remote attacker can use a crafted management console URL in a phishing attack to inject arbitrary JavaScript code into the management console web client application. This is a separate vulnerability from CVE-2016-10257.
Affected products
2- Symantec Corporation/ProxySGv5Range: 6.5 prior to 6.5.10.6
Patches
Vulnerability mechanics
References
3- www.securityfocus.com/bid/102451nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1040138nvdThird Party AdvisoryVDB Entry
- www.symantec.com/security-center/network-protection-security-advisories/SA155nvdVendor Advisory
News mentions
0No linked articles in our index yet.