CVE-2016-6357 (email_security_appliance)

CVE-2016-6357 (email_security_appliance)

A vulnerability in the configured security policies, including drop email filtering, in Cisco AsyncOS for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to bypass a configured drop filter by using an email with a corrupted attachment. More Information: CSCuz01651. Known Affected Releases: 10.0.9-015 9.7.1-066 9.9.6-026.

Source: CVE-2016-6357 (email_security_appliance)