TROYANOSYVIRUS
Zuruck zu CVEs

CVE-2016-1411

N/A

Beschreibung

A vulnerability in the update functionality of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA), Cisco Web Security Appliance (WSA), and Cisco Content Management Security Appliance (SMA) could allow an unauthenticated, remote attacker to impersonate the update server. More Information: CSCul88715, CSCul94617, CSCul94627. Known Affected Releases: 7.5.2-201 7.6.3-025 8.0.1-023 8.5.0-000 8.5.0-ER1-198 7.5.2-HP2-303 7.7.0-608 7.7.5-835 8.5.1-021 8.8.0-000 7.9.1-102 8.0.0-404 8.1.1-013 8.2.0-222. Known Fixed Releases: 8.0.2-069 8.0.2-074 8.5.7-042 9.1.0-032 8.5.2-027 9.6.1-019.

CVE Details

CVSS v3.1 BewertungN/A
Veroffentlicht12/14/2016
Zuletzt geandert5/6/2026
Quellenvd
Honeypot-Sichtungen0

Betroffene Produkte

cisco:content_security_management_appliancecisco:email_security_appliancecisco:web_security_appliance

Schwachen (CWE)

CWE-310

Referenzen

http://www.securityfocus.com/bid/94791(psirt@cisco.com)
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161207-asyncos(psirt@cisco.com)
http://www.securityfocus.com/bid/94791(af854a3a-2127-422b-91ae-364da2661108)
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161207-asyncos(af854a3a-2127-422b-91ae-364da2661108)

IOC Korrelationen

Keine Korrelationen erfasst

This product uses data from the NVD API but is not endorsed or certified by the NVD.