CVE-2016-1481
Severity Score
7.5
*CVSS v3
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
A vulnerability in the email message filtering feature of Cisco AsyncOS Software for Cisco Email Security Appliances could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.Affected Products: This vulnerability affects all releases prior to the first fixed release of Cisco AsyncOS Software for Cisco Email Security Appliances, both virtual and hardware appliances, if the software is configured to apply a message filter that contains certain rules. More Information: CSCux59873. Known Affected Releases: 8.5.6-106 9.1.0-032 9.7.0-125. Known Fixed Releases: 9.1.1-038 9.7.1-066.
Una vulnerabilidad en la característica de filtrado de mensajes email de Cisco AsyncOS Software para Cisco Email Security Appliances podría permitir a un atacante remoto no autenticado provocar una condición de denegación de servicio (DoS) en el dispositivo afectado. Productos afectados: Esta vulnerabilidad afecta a todas las versiones anteriores a la primera versión fija de de Cisco AsyncOS Software para Cisco Email Security Appliances, ambos dispositivos virtuales y hardware, si el software está configurado para aplicar un filtro de mensajes con ciertas normas. Más información: CSCux59873. Lanzamientos conocidos afectados: 8.5.6-106 9.1.0-032 9.7.0-125. Lanzamientos conocidos solucionados: 9.1.1-038 9.7.1-066.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2016-01-04 CVE Reserved
- 2016-10-28 CVE Published
- 2023-03-07 EPSS Updated
- 2024-08-05 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-20: Improper Input Validation
CAPEC
References (3)
| URL | Tag | Source |
|---|---|---|
| http://www.securityfocus.com/bid/93908 | Vdb Entry | |
| http://www.securitytracker.com/id/1037123 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161026-esa1 | 2017-07-29 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Cisco Search vendor "Cisco" | Email Security Appliance Search vendor "Cisco" for product "Email Security Appliance" | 8.5.0-000 Search vendor "Cisco" for product "Email Security Appliance" and version "8.5.0-000" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Email Security Appliance Search vendor "Cisco" for product "Email Security Appliance" | 8.5.0-er1-198 Search vendor "Cisco" for product "Email Security Appliance" and version "8.5.0-er1-198" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Email Security Appliance Search vendor "Cisco" for product "Email Security Appliance" | 8.5.6-052 Search vendor "Cisco" for product "Email Security Appliance" and version "8.5.6-052" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Email Security Appliance Search vendor "Cisco" for product "Email Security Appliance" | 8.5.6-073 Search vendor "Cisco" for product "Email Security Appliance" and version "8.5.6-073" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Email Security Appliance Search vendor "Cisco" for product "Email Security Appliance" | 8.5.6-074 Search vendor "Cisco" for product "Email Security Appliance" and version "8.5.6-074" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Email Security Appliance Search vendor "Cisco" for product "Email Security Appliance" | 8.5.6-106 Search vendor "Cisco" for product "Email Security Appliance" and version "8.5.6-106" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Email Security Appliance Search vendor "Cisco" for product "Email Security Appliance" | 8.5.6-113 Search vendor "Cisco" for product "Email Security Appliance" and version "8.5.6-113" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Email Security Appliance Search vendor "Cisco" for product "Email Security Appliance" | 8.5.7-042 Search vendor "Cisco" for product "Email Security Appliance" and version "8.5.7-042" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Email Security Appliance Search vendor "Cisco" for product "Email Security Appliance" | 8.6.0 Search vendor "Cisco" for product "Email Security Appliance" and version "8.6.0" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Email Security Appliance Search vendor "Cisco" for product "Email Security Appliance" | 8.6.0-011 Search vendor "Cisco" for product "Email Security Appliance" and version "8.6.0-011" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Email Security Appliance Search vendor "Cisco" for product "Email Security Appliance" | 8.9.0 Search vendor "Cisco" for product "Email Security Appliance" and version "8.9.0" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Email Security Appliance Search vendor "Cisco" for product "Email Security Appliance" | 8.9.1-000 Search vendor "Cisco" for product "Email Security Appliance" and version "8.9.1-000" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Email Security Appliance Search vendor "Cisco" for product "Email Security Appliance" | 8.9.2-032 Search vendor "Cisco" for product "Email Security Appliance" and version "8.9.2-032" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Email Security Appliance Search vendor "Cisco" for product "Email Security Appliance" | 9.0.0 Search vendor "Cisco" for product "Email Security Appliance" and version "9.0.0" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Email Security Appliance Search vendor "Cisco" for product "Email Security Appliance" | 9.0.0-212 Search vendor "Cisco" for product "Email Security Appliance" and version "9.0.0-212" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Email Security Appliance Search vendor "Cisco" for product "Email Security Appliance" | 9.0.0-461 Search vendor "Cisco" for product "Email Security Appliance" and version "9.0.0-461" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Email Security Appliance Search vendor "Cisco" for product "Email Security Appliance" | 9.0.5-000 Search vendor "Cisco" for product "Email Security Appliance" and version "9.0.5-000" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Email Security Appliance Search vendor "Cisco" for product "Email Security Appliance" | 9.1.0 Search vendor "Cisco" for product "Email Security Appliance" and version "9.1.0" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Email Security Appliance Search vendor "Cisco" for product "Email Security Appliance" | 9.1.0-011 Search vendor "Cisco" for product "Email Security Appliance" and version "9.1.0-011" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Email Security Appliance Search vendor "Cisco" for product "Email Security Appliance" | 9.1.0-032 Search vendor "Cisco" for product "Email Security Appliance" and version "9.1.0-032" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Email Security Appliance Search vendor "Cisco" for product "Email Security Appliance" | 9.1.0-101 Search vendor "Cisco" for product "Email Security Appliance" and version "9.1.0-101" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Email Security Appliance Search vendor "Cisco" for product "Email Security Appliance" | 9.1.1-000 Search vendor "Cisco" for product "Email Security Appliance" and version "9.1.1-000" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Email Security Appliance Search vendor "Cisco" for product "Email Security Appliance" | 9.4.0 Search vendor "Cisco" for product "Email Security Appliance" and version "9.4.0" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Email Security Appliance Search vendor "Cisco" for product "Email Security Appliance" | 9.4.4-000 Search vendor "Cisco" for product "Email Security Appliance" and version "9.4.4-000" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Email Security Appliance Search vendor "Cisco" for product "Email Security Appliance" | 9.5.0-000 Search vendor "Cisco" for product "Email Security Appliance" and version "9.5.0-000" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Email Security Appliance Search vendor "Cisco" for product "Email Security Appliance" | 9.5.0-201 Search vendor "Cisco" for product "Email Security Appliance" and version "9.5.0-201" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Email Security Appliance Search vendor "Cisco" for product "Email Security Appliance" | 9.6.0-000 Search vendor "Cisco" for product "Email Security Appliance" and version "9.6.0-000" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Email Security Appliance Search vendor "Cisco" for product "Email Security Appliance" | 9.6.0-042 Search vendor "Cisco" for product "Email Security Appliance" and version "9.6.0-042" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Email Security Appliance Search vendor "Cisco" for product "Email Security Appliance" | 9.6.0-051 Search vendor "Cisco" for product "Email Security Appliance" and version "9.6.0-051" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Email Security Appliance Search vendor "Cisco" for product "Email Security Appliance" | 9.7.0-125 Search vendor "Cisco" for product "Email Security Appliance" and version "9.7.0-125" | - |
Affected
| ||||||