Mark Ludwik

**Name of the Vulnerable Software and Affected Versions** CipherTrust IronMail version 5.0.1 **Description** The issue allows remote attackers to cause a denial of service, possibly due to CPU consumption, via a SYN flood with malformed TCP packets from multiple connections when "Denial of Service Protection" is enabled. **Recommendations** For CipherTrust IronMail version 5.0.1, consider disabling the "Denial of Service Protection" feature as a temporary workaround until a patch is available. Restrict access to the system to minimize the risk of exploitation.