Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2015-0605

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2015-0605
Last Modified 19 Feb 2015 02:25:06
Published 06 Feb 2015 11:59:09
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2015-0605

Summary

The uuencode inspection engine in Cisco AsyncOS on Cisco Email Security Appliance (ESA) devices 8.5 and earlier allows remote attackers to bypass intended content restrictions via a crafted e-mail attachment with uuencode encoding, aka Bug ID CSCzv54343.

Vulnerable Systems

Operating System

  • Cisco Asyncos 8.5


References

CONFIRM - http://tools.cisco.com/security/center/viewAlert.x?alertId=37384

CISCO - 20150206 Cisco AsyncOS Software Uuencoded Email Filtering Bypass Vulnerability

XF - cisco-asyncos-cve20150605-sec-bypass(100695)

BID - 72528

SECUNIA - 62829


Last Updated: 27 May 2016 11:07:48