2 matches found
CVE-2019-1905 Cisco Email Security Appliance GZIP Content Filter Bypass Vulnerability
A vulnerability in the GZIP decompression engine of Cisco AsyncOS Software for Cisco Email Security Appliance ESA could allow an unauthenticated, remote attacker to bypass configured content filters on the device. The vulnerability is due to improper validation of GZIP-formatted files. An attacke...
CVE-2019-1905
CVE-2019-1905 affects Cisco Email Security Appliance (ESA) running AsyncOS. The issue is in the GZIP decompression engine where improper validation of GZIP-formatted files allows an unauthenticated, remote attacker to bypass configured content filters by sending a crafted GZIP file. Impact is a b...