Remote Code Execution Vulnerability in Cisco Email Security Appliance
CVE-2016-6406

9.8CRITICAL

Key Information:

Vendor

Cisco
Status
Email Security Appliance Firmware
Vendor
CVE Published:
22 September 2016

What is CVE-2016-6406?

A remote code execution vulnerability exists in the Cisco Email Security Appliance due to improper handling of certain connections. Specifically, if the Enrollment Client version prior to 1.0.2-065 is installed, attackers can exploit the testing/debugging interface to gain root access. This flaw effectively allows an unauthorized remote user to execute arbitrary code, posing significant security risks to affected devices. Organizations should promptly update to the latest version to mitigate potential security threats.

References

http://www.securityfocus.com/bid/93116
vdb-entryx_refsource_BID
http://tools.cisco.com/security/center/content/CiscoSecur...
vendor-advisoryx_refsource_CISCO
http://www.securitytracker.com/id/1036881
vdb-entryx_refsource_SECTRACK

CVSS V3.1

Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.