Category Archives: Checkpoint

Checkpoint

Symantec Endpoint Protection Manager Cross Site Request Forgery (CVE-2016-3653)

A Cross Site Request Forgery vulnerability has been reported in the Symantec Endpoint Protection Manager. The vulnerability is due to insufficient CSRF protections. A remote, unauthenticated attacker can exploit this vulnerability by enticing a user to visit a page. Successful exploitation could allow the attacker to spoof requests to the server as if from the target user.