67 matches found
EUVD-2016-2579
Malware in sbrugna...
EUVD-2020-24452
Malware in sbrugna...
EUVD-2017-12935
Malware in sbrugna...
EUVD-2016-7279
Malware in sbrugna...
EUVD-2018-1242
Malware in sbrugna...
EUVD-2016-7386
Malware in sbrugna...
EUVD-2016-7388
Malware in sbrugna...
EUVD-2017-12917
Malware in sbrugna...
Attackers Can Crash Cisco Email Security Appliances by Sending Malicious Emails
Cisco has released security updates to contain three vulnerabilities affecting its products, including one high-severity flaw in its Email Security Appliance ESA that could result in a denial-of-service DoS condition on an affected device. The weakness, assigned the identifier CVE-2022-20653 CVSS...
The vulnerability in the web interface of Cisco AsyncOS software for Cisco Email Security Appliances and Cisco Content Security Management Appliances allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the Cisco AsyncOS software web interface for Cisco Email Security Appliances and Cisco Content Security Management Appliances relates to the disclosure of information during data transmission. Exploiting this vulnerability could allow an attacker to gain unauthorized access t...
The vulnerability of the message filtering function of Cisco AsyncOS software for Cisco Email Security Appliance security systems allows a hacker to trigger a service failure.
The vulnerability of the message filtering function in Cisco AsyncOS software for Cisco Email Security Appliances exists due to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...
The vulnerability of the message scanning function of Cisco AsyncOS software for Cisco Email Security Appliances allows a perpetrator to trigger a service failure.
The vulnerability of the message scanning function in Cisco AsyncOS software for Cisco Email Security Appliances is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor to cause service interruptions remotely...
CVE-2020-3181
A vulnerability in the malware detection functionality in Cisco Advanced Malware Protection AMP in Cisco AsyncOS Software for Cisco Email Security Appliances ESAs could allow an unauthenticated remote attacker to exhaust resources on an affected device. The vulnerability is due to insufficient...
Design/Logic Flaw
A vulnerability in the malware detection functionality in Cisco Advanced Malware Protection AMP in Cisco AsyncOS Software for Cisco Email Security Appliances ESAs could allow an unauthenticated remote attacker to exhaust resources on an affected device. The vulnerability is due to insufficient...
CVE-2020-3181 Cisco Email Security Appliance Uncontrolled Resource Exhaustion Vulnerability
A vulnerability in the malware detection functionality in Cisco Advanced Malware Protection AMP in Cisco AsyncOS Software for Cisco Email Security Appliances ESAs could allow an unauthenticated remote attacker to exhaust resources on an affected device. The vulnerability is due to insufficient...
CVE-2020-3181
CVE-2020-3181 : Cisco AsyncOS for Cisco Email Security Appliances (ESA) contains an uncontrolled resource-exhaustion vulnerability in the malware detection/AMP path due to insufficient control over memory allocation. An unauthenticated remote attacker can send a crafted email to exhaust device re...
Input validation
A vulnerability in the Sender Policy Framework SPF functionality of Cisco AsyncOS Software for Cisco Email Security Appliances ESA could allow an unauthenticated, remote attacker to bypass configured user filters on the device. The vulnerability is due to incomplete input and validation checking...
CVE-2019-1955
Cisco AsyncOS (ESA) SPF handling vulnerability (CVE-2019-1955) allows an unauthenticated, remote attacker to bypass header filters by sending specially crafted SPF packets. Root cause is incomplete input/validation for SPF messages. Affected product: Cisco Email Security Appliance with AsyncOS; c...
Cisco Patches Critical ‘Default Password’ Bug
Cisco Systems is warning customers that a discovery tool for network devices can be accessed by a remote and unauthenticated attacker. The flaw could allow an adversary to log into the system and collect sensitive data tied to host operating systems and hardware. The disclosure is part of a Cisco...
CVE-2018-15460
A vulnerability in the email message filtering feature of Cisco AsyncOS Software for Cisco Email Security Appliances ESA could allow an unauthenticated, remote attacker to cause the CPU utilization to increase to 100 percent, causing a denial of service DoS condition on an affected device. The...