The Cisco ESA provides email management and protection combining antispam, antivirus, encryption, digital rights management, and archiving technologies. The Cisco SMA is a flexible management tool designed to centralize and consolidate policy and runtime data, providing a single management interface for multiple Cisco IronPort security appliances.The Cisco WSA is a secure web gateway that combines advanced malware protection, application visibility and control (AVC), acceptable use policy controls, reporting, and secure mobility on a single platform.

A vulnerability in telnet code of Cisco AsyncOS could allow an unauthenticated, remote attacker to to execute arbitrary code on the affected system.



The vulnerability is due to insufficient boundary checks when processing telnet encryption keys. An unauthenticated, remote attacker could exploit this vulnerability by sending malicious requests to a targeted system. If successful, the attacker could execute arbitrary code on the system with elevated privileges.

System Setup Wizard

This vulnerability is documented by Cisco bug ID

This vulnerability has been assigned Common Vulnerabilities and Exposures (CVE) ID

The Cisco AsyncOS Software for Cisco WSA is affected by this vulnerability only if the(SSW) has not been performed as the Telnet access is disabled after the setup is completed.Cisco WSA will not fully operate unless the SSW has completed; this limits the scope of the vulnerability on Cisco WSA. registered customers only) for Cisco ESA, CSCzv44580 registered customers only) for Cisco SMA, and CSCuo90523 registered customers only) for Cisco WSA.The vulnerability was previously documented in Cisco IronPort bug 83262. Cisco IronPort tracks bugs using an internal system that is not available to customers. The Cisco IronPort bug tracking identifiers are provided for reference only.CVE-2011-4862.