#VU25787 Resource exhaustion in Cisco AsyncOS for Cisco Email Security Appliance
Vulnerability identifier: #VU25787
Vulnerability risk: Medium
CVSSv3.1: 6 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L/E:U/RL:U/RC:C]
CVE-ID:
CWE-ID:
CWE-400
Exploitation vector: Network
Exploit availability: No
Vulnerable software:
Cisco AsyncOS for Cisco Email Security Appliance
Server applications /
IDS/IPS systems, Firewalls and proxy servers
Vendor: Cisco Systems, Inc
Description
The vulnerability allows a remote attacker to exhaust resources on an affected device.
The vulnerability exists due to insufficient control over system memory allocation in the malware detection functionality in Cisco Advanced Malware Protection (AMP). A remote attacker can send a specially crafted email through the targeted device, cause an email attachment that contains malware to be delivered to a user and cause email processing delays.
Mitigation
Cybersecurity Help is currently unaware of any official solution to address this vulnerability.
Vulnerable software versions
Cisco AsyncOS for Cisco Email Security Appliance: 13.0
External links
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-esa-resource-exhaust-D7RQAhnD
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
