736 matches found
Cisco Email Security Appliance RAR File Attachment Scanner Bypass Vulnerability
A vulnerability in the content filtering functionality of Cisco AsyncOS Software for Cisco Email Security Appliances could allow an unauthenticated, remote attacker to bypass content filters configured on an affected device. Email that should have been filtered could instead be forwarded by the...
CVE-2016-6357
A vulnerability in the configured security policies, including drop email filtering, in Cisco AsyncOS for Cisco Email Security Appliance ESA could allow an unauthenticated, remote attacker to bypass a configured drop filter by using an email with a corrupted attachment. More Information:...
CVE-2016-6356
A vulnerability in the email message filtering feature of Cisco AsyncOS Software for Cisco Email Security Appliances could allow an unauthenticated, remote attacker to cause an affected device to stop scanning and forwarding email messages due to a denial of service DoS condition. Affected...
CVE-2016-1486
A vulnerability in the email attachment scanning functionality of the Advanced Malware Protection AMP feature of Cisco AsyncOS Software for Cisco Email Security Appliances could allow an unauthenticated, remote attacker to cause an affected device to stop scanning and forwarding email messages du...
CVE-2016-1486
A vulnerability in the email attachment scanning functionality of the Advanced Malware Protection AMP feature of Cisco AsyncOS Software for Cisco Email Security Appliances could allow an unauthenticated, remote attacker to cause an affected device to stop scanning and forwarding email messages du...
CVE-2016-1481
A vulnerability in the email message filtering feature of Cisco AsyncOS Software for Cisco Email Security Appliances could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device.Affected Products: This vulnerability affects all releases prior to...
CVE-2016-1480
A vulnerability in the Multipurpose Internet Mail Extensions MIME scanner of Cisco AsyncOS Software for Cisco Email Security Appliances ESA and Web Security Appliances WSA could allow an unauthenticated, remote attacker to bypass configured user filters on the device. Affected Products: all...
Authentication flaw
A vulnerability in the Multipurpose Internet Mail Extensions MIME scanner of Cisco AsyncOS Software for Cisco Email Security Appliances ESA and Web Security Appliances WSA could allow an unauthenticated, remote attacker to bypass configured user filters on the device. Affected Products: all...
Design/Logic Flaw
A vulnerability in the email attachment scanning functionality of the Advanced Malware Protection AMP feature of Cisco AsyncOS Software for Cisco Email Security Appliances could allow an unauthenticated, remote attacker to cause an affected device to stop scanning and forwarding email messages du...
Design/Logic Flaw
A vulnerability in Advanced Malware Protection AMP for Cisco Email Security Appliances ESA and Web Security Appliances WSA could allow an unauthenticated, remote attacker to cause a partial denial of service DoS condition due to the AMP process unexpectedly restarting. Affected Products: Cisco...
Design/Logic Flaw
A vulnerability in the email message filtering feature of Cisco AsyncOS Software for Cisco Email Security Appliances could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device.Affected Products: This vulnerability affects all releases prior to...
Cross site scripting
A vulnerability in the display of email messages in the Messages in Quarantine MIQ view in Cisco AsyncOS for Cisco Email Security Appliance ESA could allow an unauthenticated, remote attacker to cause a user to click a malicious link in the MIQ view. The malicious link could be used to facilitate...
Design/Logic Flaw
A vulnerability in the configured security policies, including drop email filtering, in Cisco AsyncOS for Cisco Email Security Appliance ESA could allow an unauthenticated, remote attacker to bypass a configured drop filter by using an email with a corrupted attachment. More Information:...
Design/Logic Flaw
A vulnerability in the email message and content filtering for malformed Multipurpose Internet Mail Extensions MIME headers of Cisco AsyncOS Software for Cisco Email Security Appliances ESA and Web Security Appliances WSA could allow an unauthenticated, remote attacker to bypass the filtering...
Information disclosure
A vulnerability in the email message filtering feature of Cisco AsyncOS Software for Cisco Email Security Appliances could allow an unauthenticated, remote attacker to cause an affected device to stop scanning and forwarding email messages due to a denial of service DoS condition. Affected...
CVE-2016-1486
CVE-2016-1486 affects Cisco AsyncOS for Cisco Email Security Appliances, specifically the AMP email-attachment scanning feature. The root cause is improper handling in the attachment-scanning process, enabling an unauthenticated, remote attacker to trigger a DoS that stops scanning and forwarding...
CVE-2016-1423
The CVE-2016-1423 entry documents a vulnerability in Cisco AsyncOS for Cisco Email Security Appliance (ESA) affecting the Messages in Quarantine (MIQ) view. The issue arises from malformed HTML script tags in quarantined email messages, which could allow an unauthenticated remote attacker to caus...
CVE-2016-6357
A vulnerability in the configured security policies, including drop email filtering, in Cisco AsyncOS for Cisco Email Security Appliance ESA could allow an unauthenticated, remote attacker to bypass a configured drop filter by using an email with a corrupted attachment. More Information:...
CVE-2016-1480
The CVE-2016-1480 issue affects Cisco AsyncOS MIME scanner in Cisco Email Security Appliances (ESA) and Web Security Appliances (WSA). It allows an unauthenticated, remote attacker to bypass configured user filters on affected devices when message/content filters scan incoming attachments. Affect...
CVE-2016-1481
The CVE-2016-1481 issue affects Cisco AsyncOS Software used in Cisco Email Security Appliances. Vulnerable component: the email message filtering feature, specifically when processing compressed attachments that contain malformed Design (DGN) files. Root cause: improper handling of compressed DGN...