01 JUL

Cisco Issues IronPort Patch - Vulnerabilities exposed systems to remote crash and takeover

Published by Richard Parry on 1st Jul 2013

Cisco has issued a patch for vulnerabilities that exposed its IronPort AsyncOS software for the Cisco e-mail security appliance to cover denial-of-service and command injection problems.



The vulnerability, described here, exposed several IronPort components. Its Web framework would allow and authenticated remote user to execute arbitrary commands with elevated privileges.

“An authenticated but unprivileged attacker could exploit this vulnerability by sending a crafted URL to the affected system, or by convincing a valid user to click on a malicious URL. A successful exploit could allow an attacker with sufficient knowledge to take complete control of the affected device,” Cisco notes.

Cisco also notes that the IronPort spam quarantine and its management GUI are both vulnerable to denial-of-service attacks. The spam quarantine has an improper handling of TCP connection requests at high speed, while the GUI is vulnerable to DoS attacks on HTTP and HTTPS connections.

Cisco has patches available for affected software.

Cisco Issues IronPort Patch - Vulnerabilities exposed systems to remote crash and takeover

Would you like to know more about this article and how Server Case can help your organisation? Please complete the form below and one of our team will get back to you right away.

I want to receive the latest offers and updates about new technology releases for Server Case via email.
Submit
Discover More

Weekly Updates

We update our Blog every week with new content. Please subscribe to our news feed for information about new products, review, case studies and happenings at Server Case.

Recent Posts

Exploring the World of Barebone Servers: A Comprehensive Guide
Exploring the World of Barebone Servers: A Comprehensive Guide
Published by Richard Parry on 5th Apr 2024
Unveiling the Superiority of Broadcom 9560 and 9500 Series RAID and HBA Controllers
Unveiling the Superiority of Broadcom 9560 and 9500 Series RAID and HBA Controllers
Published by Richard Parry on 22nd Mar 2024
Why Dynatron Air Coolers Are the Smart Choice for Your Server Cooling Needs
Why Dynatron Air Coolers Are the Smart Choice for Your Server Cooling Needs
Published by Richard Parry on 11th Mar 2024
Unlocking Efficiency and Innovation: The Case for Building Your Own Home Lab Server with Server Case
Unlocking Efficiency and Innovation: The Case for Building Your Own Home Lab Server with Server Case
Published by Richard Parry on 26th Feb 2024

LinkedIn

Instagram

Call us today on 01283 576162 to talk directly to one of our server specialists

Who we are

Europe's specialist value added distributor of server chassis, server components and server systems.

Server Case is a specialist server chassis distributor based here in the United Kingdom, with an extensive range of 19” rackmount cases built to suit a variety of environments; including remote industrial servers and everything in between. Furthermore, our distribution partnerships have allowed us to develop and deliver Server Barebones and fully configured systems to the vast IT Channel and Enterprise customers.

Read more

Latest Blog

Exploring the World of Barebone Servers: A Comprehensive Guide

Posted on: 5th Apr 2024

In the ever-evolving landscape of information technology, businesses are constantly seeking efficient, cost-effective solutions to meet their server needs. One option that has gained popularity in recent years is the barebone server. Offering a customisable, budget-friendly alternative to pre-built servers, barebone servers provide businesses with the flexibility to tailor their hardware to specif... [...] Read more

More Blogs

Latest Video

View more of our reviews, unboxing and installation videos on YouTube.

View more

Business Links

Site Information

  • Secured by Sage Pay
  • PayPal
  • Visa
  • Master Card
  • Maestro
  • American Express
  • JCB
  • Diners Club
  • Discover