CISCO : Cisco Email Security Appliance Quarantine Email Rendering Vulnerability

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

Test ID: 1.3.6.1.4.1.25623.1.0.140026

Category: CISCO

Title: Cisco Email Security Appliance Quarantine Email Rendering Vulnerability

Summary: A vulnerability in the display of email messages in the Messages in Quarantine (MIQ) view in Cisco; AsyncOS for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to; cause a user to click a malicious link in the MIQ view. The malicious link could be used to; facilitate a cross-site scripting (XSS) or HTML injection attack.;; The vulnerability is due to malformed HTML script tags in quarantined email messages. An attacker; could exploit this vulnerability by sending a crafted email message to the affected device. An; exploit could allow the attacker to trick a user who views the MIQ email message into clicking a; malicious link.;; Cisco has not released software updates that address this vulnerability. There are no workarounds; that address this vulnerability.

Description: Summary:
A vulnerability in the display of email messages in the Messages in Quarantine (MIQ) view in Cisco
AsyncOS for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to
cause a user to click a malicious link in the MIQ view. The malicious link could be used to
facilitate a cross-site scripting (XSS) or HTML injection attack.

The vulnerability is due to malformed HTML script tags in quarantined email messages. An attacker
could exploit this vulnerability by sending a crafted email message to the affected device. An
exploit could allow the attacker to trick a user who views the MIQ email message into clicking a
malicious link.

Cisco has not released software updates that address this vulnerability. There are no workarounds
that address this vulnerability.

Solution:
See the referenced vendor advisory for a solution.

CVSS Score:
4.3

CVSS Vector:
AV:N/AC:M/Au:N/C:N/I:P/A:N

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2016-1423
BugTraq ID: 93912
http://www.securityfocus.com/bid/93912
http://www.securitytracker.com/id/1037113

Copyright Copyright (C) 2016 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit.
To run a free test of this vulnerability against your system, register below.

Test ID:	1.3.6.1.4.1.25623.1.0.140026
Category:	CISCO
Title:	Cisco Email Security Appliance Quarantine Email Rendering Vulnerability
Summary:	A vulnerability in the display of email messages in the Messages in Quarantine (MIQ) view in Cisco; AsyncOS for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to; cause a user to click a malicious link in the MIQ view. The malicious link could be used to; facilitate a cross-site scripting (XSS) or HTML injection attack.;; The vulnerability is due to malformed HTML script tags in quarantined email messages. An attacker; could exploit this vulnerability by sending a crafted email message to the affected device. An; exploit could allow the attacker to trick a user who views the MIQ email message into clicking a; malicious link.;; Cisco has not released software updates that address this vulnerability. There are no workarounds; that address this vulnerability.
Description:	Summary: A vulnerability in the display of email messages in the Messages in Quarantine (MIQ) view in Cisco AsyncOS for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to cause a user to click a malicious link in the MIQ view. The malicious link could be used to facilitate a cross-site scripting (XSS) or HTML injection attack. The vulnerability is due to malformed HTML script tags in quarantined email messages. An attacker could exploit this vulnerability by sending a crafted email message to the affected device. An exploit could allow the attacker to trick a user who views the MIQ email message into clicking a malicious link. Cisco has not released software updates that address this vulnerability. There are no workarounds that address this vulnerability. Solution: See the referenced vendor advisory for a solution. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2016-1423 BugTraq ID: 93912 http://www.securityfocus.com/bid/93912 http://www.securitytracker.com/id/1037113
Copyright	Copyright (C) 2016 Greenbone AG