Cisco has issued a Security Alert warning of three vulnerabilities in its IronPort line. The flaws affect versions 6.2 and 6.5 of the IronPort Encryption appliance, as well as IronPort PostX MAP.
The company said that the IronPort C, M and S appliances are not believed to be vulnerable.
Cisco reported that two of the flaws, if exploited, could allow an attacker to view sensitive system administration details, while the third could allow remote code execution.
The first of the information disclosure flaws is in the appliance's administration interface component, and the second is in the WebSafe Servlet component.
The remote code execution vulnerability affects the HTTPS server component. This can be mitigated by restricting access to trusted IP addresses, the company said.
Administrators looking to obtain and install the fixes are advised to contact Cisco's IronPort technical support team.
Private equity firm Permira only acquired Magento from eBay for $200m three years ago
Before robots can take over from humans, we need more humans
It's not easy not being evil
The ghost is still in the machine