3 matches found
The vulnerability of the Cisco IronPort Email Security Appliance allows a malicious individual to execute arbitrary code.
The vulnerability in the SLBL service a check for reliable/locked users in Cisco AsyncOS, used by Email Security Appliances and Content Security Management Appliances, allows remote users who have passed authentication to execute arbitrary code with superuser privileges, by downloading a modified...
Cisco AsyncOS for Email Security Appliances Software Remote Code Execution (CSCug79377)
According to its self-reported version and configuration, the Cisco AsyncOS running on the remote Cisco Email Security ESA appliance is affected by a remote code execution vulnerability in the Safelist/Blocklist SLBL function due to improper handling of SLBL database files. An authenticated, remo...
CVE-2014-2119
The CVE-2014-2119 issue affects Cisco AsyncOS for Email Security Appliance (ESA) and Content Security Management Appliance (SMA). The End User Safelist/Blocklist (SLBL) service permits an authenticated remote user to execute arbitrary code with root privileges by uploading a modified SLBL databas...