MIME Header Processing Vulnerability in Cisco Email and Web Security Appliances
CVE-2016-6372

7.5HIGH

Key Information:

Vendor
Cisco
Status
Cisco Asyncos Through Wsa10.0.0-000
Vendor
CVE Published:
28 October 2016

Summary

A vulnerability exists in the processing of malformed Multipurpose Internet Mail Extensions (MIME) headers within Cisco AsyncOS Software for Email and Web Security Appliances. This flaw permits an unauthenticated remote attacker to bypass critical email filtering mechanisms. Consequently, emails that would typically be quarantined due to security policies may instead be processed normally, posing a significant threat to users by increasing the risk of malicious content being delivered. This vulnerability impacts all prior releases leading up to the fixed versions of Cisco AsyncOS for both virtual and hardware appliances that utilize message or content filters to inspect incoming email attachments.

Affected Version(s)

Cisco AsyncOS through WSA10.0.0-000 Cisco AsyncOS through WSA10.0.0-000

References

https://tools.cisco.com/security/center/content/CiscoSecu...
x_refsource_CONFIRM
http://www.securityfocus.com/bid/93911
vdb-entryx_refsource_BID
http://www.securitytracker.com/id/1037118
vdb-entryx_refsource_SECTRACK

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.