Miembros de
Boletines de Vulnerabilidades |
Cisco Email Security Appliance Format String Vulnerability |
|
Información sobre el sistema |
|
| Software afectado | Cisco |
Descripción |
|
|
The Cisco Email Security Appliance (ESA) contains a vulnerability that could allow an unauthenticated, remote attacker to impact the integrity and availability of services and data on the affected device. The impact includes a partial denial of service (DoS). In addition, the attacker could override part of the memory of the affected device. The vulnerability is due to improper validation of string input in the web application. An attacker could exploit this vulnerability by sending a crafted More info: http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/Cisco-SA-20150909-CVE-2015-6285?vs_f=Cisco%20Security%20Advisory&vs_cat=Security%20Intelligence&vs_type=RSS&vs_p=Cisco%20Email%20Security%20Appliance%20Format%20String%20Vulnerabili |
|
Identificadores estándar |
|
| Propiedad | Valor |
| CVE | |
Histórico de versiones |
||
| Versión | Comentario | Fecha |
| 1.0 | Advisory issued | 2015-10-08 |