CVE-2016-1315

The proxy engine in Cisco Advanced Malware Protection (AMP), when used with Email Security Appliance (ESA) 9.5.0-201, 9.6.0-051, and 9.7.0-125, allows remote attackers to bypass intended content restrictions via a malformed e-mail message containing an encoded file, aka Bug ID CSCux45338.
Severity
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Atk. Vector
NETWORK
Atk. Complexity
LOW
Priv. Required
NONE
Base Score
CVSS 3.x
EPSS Score
Percentile: 39%
VendorProductVersion
ciscoemail_security_appliance_firmeware
9.1.0-032
ciscoemail_security_appliance_firmeware
9.5.0-201
ciscoemail_security_appliance_firmeware
9.6.0-051
ciscoemail_security_appliance_firmeware
9.7.0-125
ciscoemail_security_appliance_firmeware
9.7.0-782
𝑥
= Vulnerable software versions