IBM ISS Proventia Mail Security contains cross-site scripting and arbitrary file read vulnerabilities.
The IBM security advisories state:
An attacker may be able to read arbitrary files or launch an XSS attack to steal cookies, execute scripts in the user's browser, etc.
Apply an Update
Thanks to Offensive Security for reporting these vulnerabilities.
This document was written by Jared Allar.