Main Vulnerability Database SB2016110210

SB2016110210 - Security restrictions bypass in Cisco Email Security Appliance

Published: November 2, 2016 Updated: April 5, 2018

Security Bulletin ID SB2016110210

CSH Severity

Low

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Remote access

Highest impact Data manipulation

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 vulnerability.

1) Security restrictions bypass (CVE-ID: CVE-2016-6458)

CWE-ID: CWE-200 - Exposure of sensitive information to an unauthorized actor

CVSSv4: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear

The vulnerability allows a remote unauthenticated user to bypass security controls on the target system.
The weakness is due to improper input validation. By sending an email message containing a specially crafted RAR archive, a remote attacker can bypass the configured email attachment content filters.
Successful exploitation of the vulnerability results in security bypass and access to data on the vulnerable system.

Remediation

Install update from vendor's website.

References

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161102-esa