EUVD-2012-0370

Malware in sbrugna...

CVE-2012-1326

Cisco IronPort Web Security Appliance up to and including 7.5 does not validate the basic constraints of the certificate authority which could lead to MITM attacks...

Design/Logic Flaw

Cisco IronPort Web Security Appliance up to and including 7.5 does not validate the basic constraints of the certificate authority which could lead to MITM attacks...

CVE-2012-1326

CVE-2012-1326 affects Cisco IronPort Web Security Appliance (WSA) up to and including version 7.5, where the software does not properly validate the basic constraints of the certificate authority in SSL/TLS. This misconfiguration could allow an unauthenticated, remote attacker to perform man‑in‑t...

Code injection

Cisco IronPort Web Security Appliance AsyncOS software prior to 7.5 has a SSL Certificate Caching vulnerability which could allow man-in-the-middle attacks...

CVE-2012-1316

CVE-2012-1316 affects the Cisco IronPort Web Security Appliance, where the product does not check for certificate revocation, potentially enabling MITM attacks. The linked sources show an impact on integrity (CVSS3.1: HIGH) with network exposure (CVSS3.1: AV:N, AC:H, PR:N, UI:N, S:U) and a CVSSv2...

CVE-2012-0334

Cisco IronPort Web Security Appliance AsyncOS before 7.5 contains a SSL certificate caching flaw in its insecure SSL/TLS handling, enabling unauthenticated, remote attackers on adjacent networks to perform MITM by injecting forged certificates. The vulnerability stems from improper validation of ...

CVE-2012-0334

Cisco IronPort Web Security Appliance AsyncOS software prior to 7.5 has a SSL Certificate Caching vulnerability which could allow man-in-the-middle attacks...

Cisco Content Security Virtual Appliance M380 IronPort Remote Cross Site Host Modification

// // // Disclaimer: // This or previous programs are for Educational purpose ONLY. Do not use it without permission. // The usual disclaimer applies, especially the fact that Todor Donev is not liable for any damages // caused by direct or indirect use of the information or functionality provide...

Cisco Content Security Management Virtual Appliance M600V IronPort Header Injection

!/usr/bin/perl -w Cisco Content Security Management Virtual Appliance M600V IronPort Remote Header 'Host' Injection Copyright 2019 c Todor Donev Disclaimer: This or previous programs are for Educational purpose ONLY. Do not use it without permission. The usual disclaimer applies, especially the...

Cisco C690 Email Security Appliance 11.0.2-044 IronPort Header Injection

!/usr/bin/perl -w Cisco C690 Email Security Appliance Version: 11.0.2-044 IronPort Remote Header 'Host' Injection Copyright 2019 c Todor Donev Disclaimer: This or previous programs are for Educational purpose ONLY. Do not use it without permission. The usual disclaimer applies, especially the fac...

Cisco Email Security Virtual Appliance C600V IronPort Header Injection

!/usr/bin/perl -w Cisco Email Security Virtual Appliance C600V IronPort Remote Header 'Host' Injection Copyright 2019 c Todor Donev Disclaimer: This or previous programs are for Educational purpose ONLY. Do not use it without permission. The usual disclaimer applies, especially the fact that Todo...

Cisco M1070 Content Security Management Appliance IronPort Header Injection

!/usr/bin/perl -w Cisco M1070 Content Security Management Appliance IronPort Remote Header 'Host' Injection Copyright 2019 c Todor Donev Disclaimer: This or previous programs are for Educational purpose ONLY. Do not use it without permission. The usual disclaimer applies, especially the fact that...

Cisco Email Security Appliance (IronPort) C160 - Host Header Injection

Cisco Email Security Appliance IronPort C160 - Host Header Injection !/usr/bin/perl -w Cisco Titsco Email Security Appliance IronPort C160 Header 'Host' Injection Copyright 2019 c Todor Donev Disclaimer: This or previous programs are for Educational purpose ONLY. Do not use it without permission...

Cisco Email Security Appliance (IronPort) C150 - (Host) Header Injection Exploit

!/usr/bin/perl -w Cisco IronPort C150 Remote Header 'Host' Injection Copyright 2019 c Todor Donev Disclaimer: This or previous programs are for Educational purpose ONLY. Do not use it without permission. The usual disclaimer applies, especially the fact that Todor Donev is not liable for any...

Cisco (Titsco) Email Security Appliance (IronPort) C160 Header Injection

!/usr/bin/perl -w Cisco Titsco Email Security Appliance IronPort C160 Header 'Host' Injection Copyright 2019 c Todor Donev Disclaimer: This or previous programs are for Educational purpose ONLY. Do not use it without permission. The usual disclaimer applies, especially the fact that Todor Donev i...

CVE-2016-6406

Cisco IronPort AsyncOS 9.1.2-023, 9.1.2-028, 9.1.2-036, 9.7.2-046, 9.7.2-047, 9.7.2-054, 10.0.0-124, and 10.0.0-125 on Email Security Appliance ESA devices, when Enrollment Client before 1.0.2-065 is installed, allows remote attackers to obtain root access via a connection to the testing/debuggin...

Design/Logic Flaw

Cisco IronPort AsyncOS 9.1.2-023, 9.1.2-028, 9.1.2-036, 9.7.2-046, 9.7.2-047, 9.7.2-054, 10.0.0-124, and 10.0.0-125 on Email Security Appliance ESA devices, when Enrollment Client before 1.0.2-065 is installed, allows remote attackers to obtain root access via a connection to the testing/debuggin...

CVE-2016-6406

Cisco IronPort AsyncOS on Cisco Email Security Appliances (ESA) is affected by a remote code execution vulnerability (CVE-2016-6406) due to an internal testing/debugging interface present on affected releases. When Enrollment Client before 1.0.2-065 is installed, an unauthenticated remote attacke...

Threat Outbreak Alert RuleID20082: Email Messages Distributing Malicious Software on December 16, 2015

Medium Alert ID: 42711 First Published: 2015 December 16 20:46 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID20082 may contain the following files: Name |...