2 matches found
CVE-2015-0577
Cisco AsyncOS ISQ (IronPort Spam Quarantine) XSS: multiple vulnerabilities in the ISQ web page on ESA/SMA due to insufficient input validation, enabling remote attackers to inject arbitrary script/HTML via unspecified parameters. Root cause: input validation gaps in the web page. Impact: cross-si...
CVE-2015-0577
Multiple cross-site scripting XSS vulnerabilities in the IronPort Spam Quarantine ISQ page in Cisco AsyncOS, as used on the Cisco Email Security Appliance ESA and Content Security Management Appliance SMA, allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, a...