CyberSec.Space Logo
Back to CVE Browser

CVE-2013-3386

HIGH
7.8
CVSS Severity Score
EPSS Score0.0390%
EPSS Percentile42.30th
PublishedJun 27, 2013
Last ModifiedApr 29, 2026

Vulnerability Description

The IronPort Spam Quarantine (ISQ) component in the web framework in IronPort AsyncOS on Cisco Email Security Appliance devices before 7.1.5-106 and 7.3, 7.5, and 7.6 before 7.6.3-019 and Content Security Management Appliance devices before 7.9.1-102 and 8.0 before 8.0.0-404 allows remote attackers to cause a denial of service (service crash or hang) via a high rate of TCP connection attempts, aka Bug IDs CSCzv25573 and CSCzv81712.

Affected Platforms (CPE)

πŸ’»
Cisco

Ironport Asyncos

<= 7.1.5
πŸ’»
Cisco

Ironport Asyncos

= 7.3
πŸ’»
Cisco

Ironport Asyncos

= 7.5
πŸ’»
Cisco

Ironport Asyncos

= 7.6
πŸ’»
Cisco

Ironport Asyncos

= 7.9
πŸ’»
Cisco

Ironport Asyncos

= 8.0

References & Advisories

πŸ”— http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130626-esa
πŸ”— http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130626-sma
πŸ”— http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130626-esa
πŸ”— http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130626-sma

Related Vulnerabilities

CVE-2016-64069.8

Cisco IronPort AsyncOS 9.1.2-023, 9.1.2-028, 9.1.2-036, 9.7.2-046, 9.7.2-047, 9.7.2-054, 10.0.0-124, and 10.0.0-125 on Email Secur...

CVE-2013-33849.0

The web framework in IronPort AsyncOS on Cisco Web Security Appliance devices before 7.1.3-013, 7.5 before 7.5.0-838, and 7.7 befo...

CVE-2013-33839.0

The web framework in IronPort AsyncOS on Cisco Web Security Appliance devices before 7.1.3-013, 7.5 before 7.5.0-838, and 7.7 befo...

CVE-2013-33857.8

The management GUI in the web framework in IronPort AsyncOS on Cisco Web Security Appliance devices before 7.1.3-013, 7.5 before 7...