Cisco Cisco Email Security Appliance C680 Release Notes

For the AsyncOS 7.6 release, please use the following instructions to upgrade your Email Security 
appliance.

Save the XML configuration file off the IronPort appliance. 

If you are using the Safelist/Blocklist feature, export the Safelist/Blocklist database off the IronPort 
appliance. 

Suspend all listeners.

Wait for the queue to empty.

From the System Administration tab, select the System Upgrade page. 

Click the Available Upgrades button. The page refreshes with a list of available AsyncOS upgrade 
versions.

Click the Begin Upgrade button and your upgrade will begin. Answer the questions as they appear.

When the upgrade is complete, click the Reboot Now button to reboot your IronPort appliance. 

Resume all listeners.

This section includes the following topics: 

 lists the issues that were resolved in version 7.6 of AsyncOS for Email.

83262

Fixed: FreeBSD telnetd Remote Code Execution Vulnerability

This hot patch fixes a vulnerability in the Cisco IronPort Email Security appliance that 
could have allowed a remote, unauthenticated attacker to execute arbitrary code with 
elevated privileges.

For more information on the vulnerability, see the Cisco security advisory at 

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/ci

sco-sa-20120126-ironport

80810

In previous versions of AsyncOS for Email, the Email Security appliance trusted 
DigiNotar as a root certificate authority. It also trusted DigiNotar’s intermediate 
certificates issued by the State of Netherlands. These certificates are no longer 
accepted.