6.8
CVSSv2

CVE-2009-0056

Published: 16/01/2009 Updated: 08/03/2011
CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6
VMScore: 605
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Vulnerability Summary

Cross-site request forgery (CSRF) vulnerability in the administration interface in Cisco IronPort Encryption Appliance 6.2.4 prior to 6.2.4.1.1, 6.2.5, 6.2.6, 6.2.7 prior to 6.2.7.7, 6.3 prior to 6.3.0.4, and 6.5 prior to 6.5.0.2; and Cisco IronPort PostX 6.2.1 prior to 6.2.1.1 and 6.2.2 prior to 6.2.2.3; allows remote malicious users to execute commands and modify appliance preferences as arbitrary users via a logout action.

Vulnerable Product Search on Vulmon Subscribe to Product

cisco ironport encryption appliance 6.2.4

cisco ironport encryption appliance 6.2.4.1

cisco ironport encryption appliance 6.2.5

cisco ironport encryption appliance 6.2.6

cisco ironport encryption appliance 6.2.7

cisco ironport encryption appliance 6.2.7.1

cisco ironport encryption appliance 6.2.7.2

cisco ironport encryption appliance 6.2.7.3

cisco ironport encryption appliance 6.2.7.4

cisco ironport encryption appliance 6.2.7.5

cisco ironport encryption appliance 6.2.7.6

cisco ironport encryption appliance 6.3

cisco ironport encryption appliance 6.3.0.1

cisco ironport encryption appliance 6.3.0.2

cisco ironport encryption appliance 6.3.0.3

cisco ironport encryption appliance 6.5

cisco ironport encryption appliance 6.5.0.1

cisco ironport postx 6.2.1

cisco ironport postx 6.2.2

cisco ironport postx 6.2.2.1

cisco ironport postx 6.2.2.2