Vulnerability Details CVE-2010-0144
Unspecified vulnerability in the WebSafe DistributorServlet in the embedded HTTPS server on the Cisco IronPort Encryption Appliance 6.2.x before 6.2.9.1 and 6.5.x before 6.5.2, and the IronPort PostX MAP before 6.2.9.1, allows remote attackers to read arbitrary files via unknown vectors, aka IronPort Bug 65922.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 37.8%
CVSS Severity
CVSS v2 Score 7.8
References
- http://secunia.com/advisories/38525
- http://www.cisco.com/en/US/products/products_applied_mitigation_bulletin09186a0080b17904.html
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080b17903.shtml
- http://secunia.com/advisories/38525
- http://www.cisco.com/en/US/products/products_applied_mitigation_bulletin09186a0080b17904.html
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080b17903.shtml
Products affected by CVE-2010-0144
-
cpe:2.3:h:cisco:ironport_encryption_appliance:6.2.4
-
cpe:2.3:h:cisco:ironport_encryption_appliance:6.2.4.1
-
cpe:2.3:h:cisco:ironport_encryption_appliance:6.2.5
-
cpe:2.3:h:cisco:ironport_encryption_appliance:6.2.6
-
cpe:2.3:h:cisco:ironport_encryption_appliance:6.2.7
-
cpe:2.3:h:cisco:ironport_encryption_appliance:6.2.7.1
-
cpe:2.3:h:cisco:ironport_encryption_appliance:6.2.7.2
-
cpe:2.3:h:cisco:ironport_encryption_appliance:6.2.7.3
-
cpe:2.3:h:cisco:ironport_encryption_appliance:6.2.7.4
-
cpe:2.3:h:cisco:ironport_encryption_appliance:6.2.7.5
-
cpe:2.3:h:cisco:ironport_encryption_appliance:6.2.7.6
-
cpe:2.3:h:cisco:ironport_encryption_appliance:6.5
-
cpe:2.3:h:cisco:ironport_encryption_appliance:6.5.0.1
-
cpe:2.3:h:cisco:ironport_postx:6.2.1
-
cpe:2.3:h:cisco:ironport_postx:6.2.2
-
cpe:2.3:h:cisco:ironport_postx:6.2.2.1
-
cpe:2.3:h:cisco:ironport_postx:6.2.2.2