Critical Flaw in Cisco’s Email Security Appliance Enables ‘Permanent DoS’
Cisco has plugged 18 vulnerabilities, including two flaws that could allow threat actors to carry out denial of service (DoS) attacks on affected machines by means of sending an email. One of the DoS bugs was rated as critical, and the other as “high” in terms of severity. The 16 remaining flaws were classified as “medium.”
The critical flaw (CVE-2018-15453) affects Cisco Email Security Appliances and could be exploited to “cause a permanent DoS condition” on a targeted solution. The high-severity bug (CVE-2018-15460) affects the same software and could also cause DoS.