Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability in the Multipurpose Internet Mail Extensions (MIME) scanner of Cisco AsyncOS Software for Cisco Email Security Appliances (ESA) could allow an unauthenticated, remote attacker to bypass configured user filters on the device. The vulnerability is due to improper error handling of a malformed MIME header in an email attachment. An attacker could exploit this vulnerability by sending an email with a crafted MIME attachment. For example, a successful exploit could allow the attacker to bypass configured user filters to drop the email. The malformed MIME headers may not be RFC compliant. However, some mail clients could still allow users to access the attachment, which may not have been properly filtered by the device. Cisco Bug IDs: CSCvf44666.
CVSS Information
N/A
Vulnerability Type
7PK-安全功能
Vulnerability Title
Cisco Email Security Appliance Cisco AsyncOS Software Multipurpose Internet Mail Extensions scanner 安全漏洞
Vulnerability Description
Cisco Email Security Appliance(ESA)是美国思科(Cisco)公司的一个电子邮件安全设备。AsyncOS Software是使用在其中的操作系统。Multipurpose Internet Mail Extensions(MIME)scanner是其中的一个多功能邮件扩展扫描器。 Cisco ESA中的Cisco AsyncOS Software的MIME scanner存在安全漏洞,该漏洞源于程序没有正确的处理邮件附件中畸形的MIME包头。远程攻击者可通过发送带有特制MI
CVSS Information
N/A
Vulnerability Type
N/A