漏洞标题
N/A
漏洞描述信息
Cisco Email Security Appliances所使用的Cisco AsyncOS Software的Advanced Malware Protection(AMP)功能中的电子邮件附件扫描功能的一个漏洞可能导致未验证的远程攻击者使受影响的设备停止扫描和转发电子邮件消息,因为拒绝服务(DoS)条件。受影响的产品:这个漏洞会影响Cisco AsyncOS Software的9.7.1及后续版本,尤其是在第一个修复版本之前,对于虚拟和硬件的Cisco Email Security Appliances,如果AMP功能被配置用于扫描 incoming email attachments。更多信息:CSCuy99453。已知的受影响版本:9.7.1-066。已知的修复版本:10.0.0-125 9.7.1-207 9.7.2-047。
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
漏洞类别
N/A
漏洞标题
N/A
漏洞描述信息
A vulnerability in the email attachment scanning functionality of the Advanced Malware Protection (AMP) feature of Cisco AsyncOS Software for Cisco Email Security Appliances could allow an unauthenticated, remote attacker to cause an affected device to stop scanning and forwarding email messages due to a denial of service (DoS) condition. Affected Products: This vulnerability affects Cisco AsyncOS Software releases 9.7.1 and later, prior to the first fixed release, for both virtual and hardware Cisco Email Security Appliances, if the AMP feature is configured to scan incoming email attachments. More Information: CSCuy99453. Known Affected Releases: 9.7.1-066. Known Fixed Releases: 10.0.0-125 9.7.1-207 9.7.2-047.
CVSS信息
N/A
漏洞类别
N/A
漏洞标题
Cisco AsyncOS for Cisco Email Security Appliances 拒绝服务漏洞
漏洞描述信息
Cisco AsyncOS for Cisco Email Security Appliances(ESA)是美国思科(Cisco)公司的一套使用在电子邮件安全设备(ESA)中的操作系统。 Cisco AsyncOS Software for Cisco ESA 9.7.1-066版本的Advanced Malware Protection功能存在拒绝服务漏洞。远程攻击者可利用该漏洞造成拒绝服务(受影响的设备停止扫描或转发邮件信息)。
CVSS信息
N/A
漏洞类别
授权问题