Symantec Messaging Gateway version 9.5.3-3 suffers from an authenticated arbitrary file download vulnerability. Unfortunately, as usual, the NCC group are withholding any details for three months.
25af61338564cb5ac5945690d75e3ef01177fd3439ed35b0b88b7b650a1c8240