Executive Summary
Summary | |
---|---|
Title | Multiple Vulnerabilities in Cisco IronPort Encryption Appliance |
Informations | |||
---|---|---|---|
Name | cisco-sa-20100210-ironport | First vendor Publication | 2009-12-21 |
Vendor | Cisco | Last vendor Modification | 2010-02-10 |
Severity (Vendor) | N/A | Revision | 1.0 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:L/Au:N/C:C/I:C/A:C) | |||
---|---|---|---|
Cvss Base Score | 10 | Attack Range | Network |
Cvss Impact Score | 10 | Attack Complexity | Low |
Cvss Expoit Score | 10 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Cisco IronPort Encryption Appliance devices contain two vulnerabilities that allow remote, unauthenticated access to any file on the device and one vulnerability that allows remote, unauthenticated users to execute arbitrary code with elevated privileges. There are workarounds available to mitigate these vulnerabilities. Cisco has released free software updates that address these vulnerabilities. |
Original Source
Url : http://www.cisco.com/warp/public/707/cisco-sa-20100210-ironport.shtml |
CPE : Common Platform Enumeration
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
62287 | Cisco IronPort Encryption Appliance HTTPS Server Unspecified Arbitrary Code E... |
62286 | Cisco IronPort Encryption Appliance WebSafe Servlet Unspecified Arbitrary Fil... |
62285 | Cisco IronPort Encryption Appliance Admin Interface Unspecified Arbitrary Fil... |
Information Assurance Vulnerability Management (IAVM)
Date | Description |
---|---|
2010-02-18 | IAVM : 2010-A-0021 - Multiple Vulnerabilities in Cisco IronPort Severity : Category I - VMSKEY : V0022669 |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2013-09-23 | Name : The remote device runs a service that is affected by multiple vulnerabilities. File : cisco_ironport_postx_6291.nasl - Type : ACT_GATHER_INFO |
Alert History
Date | Informations |
---|---|
2013-11-11 12:37:29 |
|