2 matches found
Cisco AsyncOS for Email Security Appliance Attachment MIME Header Handling Filter Bypass (cisco-sa-20170607-esa1)
According to its self-reported version, the Cisco AsyncOS running on the remote Cisco Email Security ESA appliance is affected by a security bypass vulnerability in the email message scanning functionality due to improper validation of emails with attachments and a modified Multipurpose Internet...
CVE-2017-6671
CVE-2017-6671 affects Cisco AsyncOS for Cisco Email Security Appliance (ESA). The vulnerability resides in the email message scanning feature, where improper validation of emails with attachments and a modified MIME header can allow an unauthenticated, remote attacker to bypass configured filters...