Cisco Cisco Content Security Management Appliance M690 Notas de publicación
2
Release Notes for Hot Patch 2 for Cisco IronPort AsyncOS 7.9.1 for Security Management
Resolved Issues
Resolved Issues
Additional Information
For additional information about Cisco IronPort AsyncOS 7.9.1 for Security Management, see the
Release Notes at
Release Notes at
Service and Support
To obtain support, visit:
International: Visit
Support Site: Visit
Cisco and the Cisco logo are trademarks or registered trademarks of Cisco and/or its affiliates in the U.S. and other countries. To view a list of
Cisco trademarks, go to this URL:
Cisco trademarks, go to this URL:
. Third-party trademarks mentioned are the property of their respective owners.
The use of the word partner does not imply a partnership relationship between Cisco and any other company. (1110R)
Defect ID
Description
CSCzv24579
Fixed: Web Framework Authenticated Command Injection Vulnerability
A vulnerability in the appliance could have allowed an authenticated, remote attacker
to execute arbitrary commands on the underlying operating system with elevated
privileges.
to execute arbitrary commands on the underlying operating system with elevated
privileges.
For more information, see the Cisco security advisory at
CSCzv81712
Fixed: IronPort Spam Quarantine (ISQ) Denial of Service Vulnerability
A vulnerability in the appliance could have allowed an unauthenticated, remote
attacker to cause multiple critical processes to become unresponsive, resulting in a
denial of service condition.
attacker to cause multiple critical processes to become unresponsive, resulting in a
denial of service condition.
For more information, see the Cisco security advisory at
CSCzv78669
Fixed: Management Graphical User Interface Denial of Service Vulnerability
A vulnerability in the appliance could have allowed an unauthenticated, remote
attacker to cause multiple critical processes to become unresponsive, resulting in a
denial of service condition.
attacker to cause multiple critical processes to become unresponsive, resulting in a
denial of service condition.
For more information, see the Cisco security advisory at
Fixed: SMA is unusably slow when using Centralized Configuration
Management with many WSAs
Management with many WSAs