Hyland Perceptive Filters releases before 2023-12-08 (e.g., 11.4.0.2647), as used in Cisco IronPort Email Security Appliance Software, Cisco Secure Email Gateway, and various non-Cisco products, allow attackers to trigger a segmentation fault and execute arbitrary code via a crafted document.
The attacker sends a specially crafted document to a system using the Hyland Perceptive Filters library. While processing such a document, the library performs an improper memory write (CWE-787 — buffer overflow/out-of-bounds write), which leads to a segmentation fault. This fault can be exploited to hijack program execution flow control and execute arbitrary code.
An attacker without any privileges can remotely execute arbitrary code on the vulnerable system, which in practice means complete takeover of the device — threat to system confidentiality, integrity, and availability.
Update the Hyland Perceptive Filters library to a version released after 2023-12-08 (after version 11.4.0.2647). For Cisco products, apply patches available from the manufacturer according to references (Cisco Bug ID: CSCwe11003). It is also recommended to monitor security channels of vendors of other products using this library.
Hyland Perceptive Filters in versions before 2023-12-08 (e.g., 11.4.0.2647), used in Cisco IronPort Email Security Appliance, Cisco Secure Email Gateway, and other third-party products using this library.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HCisco Ironport Email Security Appliance
APPCiscowszystkie wersjeCisco Secure Email Gateway
HWCiscowszystkie wersjeCisco Secure Email Gateway Firmware
OSCiscowszystkie wersje
Related vulnerabilities
Cisco Secure Email Gateway — nadpisywanie dowolnych plików przez załącznik e-mail
A vulnerability in the email filtering mechanism of Cisco Secure Email Gateway could allow an unauthenticated,...
A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email and Web...
Multiple vulnerabilities in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Emai...
Multiple vulnerabilities in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Emai...