Cisco IronPort Web Security Appliance Multiple Security Bypass Vulnerabilities
BID:52981
CVE-2012-1316 | CVE-2012-334 | CVE-2012-1326 |Info
Cisco IronPort Web Security Appliance Multiple Security Bypass Vulnerabilities
| Bugtraq ID: | 52981 |
| Class: | Design Error |
| CVE: |
CVE-2012-0334 CVE-2012-1316 CVE-2012-1326 |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 11 2012 12:00AM |
| Updated: | Apr 11 2012 12:00AM |
| Credit: | Jeff Jarmoc |
| Vulnerable: | |
| Not Vulnerable: | |
Discussion
Cisco IronPort Web Security Appliance Multiple Security Bypass Vulnerabilities
Cisco IronPort Web Security Appliance is prone to multiple security-bypass vulnerabilities that may allow attackers to conduct spoofing attacks.
Successfully exploiting these issues will allow attackers to bypass security restrictions and perform unauthorized actions.
Cisco IronPort Web Security Appliance is prone to multiple security-bypass vulnerabilities that may allow attackers to conduct spoofing attacks.
Successfully exploiting these issues will allow attackers to bypass security restrictions and perform unauthorized actions.
Exploit / POC
Cisco IronPort Web Security Appliance Multiple Security Bypass Vulnerabilities
Attackers can use readily available tools to exploit this issue.
Attackers can use readily available tools to exploit this issue.
Solution / Fix
Cisco IronPort Web Security Appliance Multiple Security Bypass Vulnerabilities
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
Cisco IronPort Web Security Appliance Multiple Security Bypass Vulnerabilities
References:
References: