Cisco Secure Email Gateway Arbitrary File Write Vulnerability | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		Cisco Secure Email Gateway Arbitrary File Write Vulnerability (cisco.com)
		1 point by doener on July 18, 2024 \| hide \| past \| favorite \| 1 comment

richij on July 18, 2024 [–]

tl;dr: Send an email message with a carefully crafted file attachment. Triggers a parsing bug (presumably a buffer overflow). Attacker could cause several bad things, including adding a root user. Yikes.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact