Lucene search
HistoryJul 16, 2015 - 7:59 p.m.
CVE-2015-4278
cisco
email security
esa
denial of service
vulnerability
cve-2015-4278
nvd
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
7 High
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
56.2%
Cisco Email Security Appliance (ESA) devices with software 8.5.6-106 and 9.5.0-201 allow remote attackers to cause a denial of service (per-domain e-mail reception outage) by placing malformed DMARC policy data in DNS TXT records for a domain, aka Bug ID CSCuv14806.
Affected configurations
Node
ciscoemail_security_appliance_firmwareMatch8.5.6-106
ORciscoemail_security_appliance_firmwareMatch9.5.0-201
Related
prion
prion
Design/Logic Flaw
2015-07-16 19:59:00
cvelist
cvelist
CVE-2015-4278
2015-07-16 19:00:00
nvd
nvd
CVE-2015-4278
2015-07-16 19:59:03
cisco
cisco
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
7 High
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
56.2%
Related for CVE-2015-4278