CVE-2010-0143
Summary
| CVE | CVE-2010-0143 |
|---|---|
| State | PUBLISHED |
| Assigner | cisco |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2010-02-11 17:30:00 UTC |
| Updated | 2026-04-29 01:13:23 UTC |
| Description | Unspecified vulnerability in the administrative interface in the embedded HTTPS server on the Cisco IronPort Encryption Appliance 6.2.x before 6.2.9.1 and 6.5.x before 6.5.2, and the IronPort PostX MAP before 6.2.9.1, allows remote attackers to read arbitrary files via unknown vectors, aka IronPort Bug 65921. |
Risk And Classification
Primary CVSS: v2.0 7.8 from [email protected]
AV:N/AC:L/Au:N/C:C/I:N/A:N
Problem Types: NVD-CWE-noinfo | n/a
CVSS v2.0 Breakdown
Access Vector
NetworkAccess Complexity
LowAuthentication
NoneConfidentiality
CompleteIntegrity
NoneAvailability
NoneAV:N/AC:L/Au:N/C:C/I:N/A:N
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Cisco | Ironport Encryption Appliance | 6.2.4 | All | All | All |
| Hardware | Cisco | Ironport Encryption Appliance | 6.2.4.1 | All | All | All |
| Hardware | Cisco | Ironport Encryption Appliance | 6.2.5 | All | All | All |
| Hardware | Cisco | Ironport Encryption Appliance | 6.2.6 | All | All | All |
| Hardware | Cisco | Ironport Encryption Appliance | 6.2.7 | All | All | All |
| Hardware | Cisco | Ironport Encryption Appliance | 6.2.7.1 | All | All | All |
| Hardware | Cisco | Ironport Encryption Appliance | 6.2.7.2 | All | All | All |
| Hardware | Cisco | Ironport Encryption Appliance | 6.2.7.3 | All | All | All |
| Hardware | Cisco | Ironport Encryption Appliance | 6.2.7.4 | All | All | All |
| Hardware | Cisco | Ironport Encryption Appliance | 6.2.7.5 | All | All | All |
| Hardware | Cisco | Ironport Encryption Appliance | 6.2.7.6 | All | All | All |
| Hardware | Cisco | Ironport Encryption Appliance | 6.5 | All | All | All |
| Hardware | Cisco | Ironport Encryption Appliance | 6.5.0.1 | All | All | All |
| Hardware | Cisco | Ironport Postx | 6.2.1 | All | All | All |
| Hardware | Cisco | Ironport Postx | 6.2.2 | All | All | All |
| Hardware | Cisco | Ironport Postx | 6.2.2.1 | All | All | All |
| Hardware | Cisco | Ironport Postx | 6.2.2.2 | All | All | All |
Vendor Declared Affected Products
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Cisco Security Advisory: Multiple Vulnerabilities in Cisco IronPort Encryption Appliance - Cisco Systems | af854a3a-2127-422b-91ae-364da2661108 | www.cisco.com | Patch, Vendor Advisory |
| Cisco Applied Mitigation Bulletin: Identifying and Mitigating Exploitation of the Multiple Vulnerabilities in IronPort Encryption Appliance - Cisco Systems | af854a3a-2127-422b-91ae-364da2661108 | www.cisco.com | Vendor Advisory |
| Cisco IronPort Multiple Vulnerabilities - Advisories - Community | af854a3a-2127-422b-91ae-364da2661108 | secunia.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.