2 matches found
CVE-2013-3395
Cross-site request forgery CSRF vulnerability in the web framework on Cisco IronPort Web Security Appliance WSA devices, Email Security Appliance ESA devices, and Content Security Management Appliance SMA devices allows remote attackers to hijack the authentication of arbitrary users, aka Bug IDs...
CVE-2013-3395
CVE-2013-3395 describes a CSRF flaw in the web framework of Cisco IronPort products (Web Security Appliance, Email Security Appliance, Content Security Management Appliance). The vulnerability allows remote attackers to hijack the authentication of arbitrary users by inducing them to perform unwa...