Fair play to McAfee for fixing these issues, giving an accurate description of the issues and crediting me with the discovery. This is probably one of the best customer notifications I have seen from the vendors I have dealt with during my research project.
Affected Software: McAfee Email and Web Security 5.x, McAfee Email Gateway 7.0
NGS00153 – Reflected XSS
NGS00154 – Logout Failure (I would have called this session-management issues, but whatever)
NGS00155 – Password Reset issue
Any logged-in user can bypass controls to reset passwords of other administrators.
NGS00156 – Session Disclosure
Active session tokens of other users are disclosed within the Dashboard.
NGS00157 – Weak Encryption of Backups
Password hashes can be recovered from a system backup and easily cracked.
NGS00158 – File Download Issue
Arbitrary file download is possible with a crafted URL, when logged in as any user.
NGS00159 – File Content Leakage
File contents disclosure as if root user, when logged in as any user.