Lumension® Endpoint Intelligence Center

Intelligence Center » News Archive » Cisco fixes 3-year-old vulnerability affecting security appliances

Cisco fixes 3-year-old vulnerability affecting security appliances

2014/10/24

Securityweek - (International) Cisco released patches to close a vulnerability in its AsyncOS used in several of the company's security appliances that could allow a remote, unauthenticated attacker to execute arbitrary code with elevated privileges. The vulnerability affects all models of Cisco Email Security Appliances (ESA), Cisco Web Security Appliances (WES) and Cisco Content Security Management Appliances (SMA) running affected versions of AsyncOS.

Source: http://www.securityweek.com/cisco-fixes-3-year-old-vulnerability-affecting-security-appliances

Note: This news synopsis is taken from the DHS Daily Open Source Infrastructure Report, a daily [Monday through Friday, except US Federal holidays] summary of open-source published information concerning significant critical infrastructure issues; a 10-day archive of the DOSIR can be found at: http://www.dhs.gov/dhs-daily-open-source-infrastructure-report.


Last Updated: 27 May 2016 10:22:14