CVE-2016-1486

Name of the Vulnerable Software and Affected Versions Cisco AsyncOS Software versions 9.7.1 through 9.7.1-066 Cisco AsyncOS Software versions 9.7.2 prior to 9.7.2-047

Description A denial of service (DoS) condition could be triggered by an unauthenticated, remote attacker due to a vulnerability in the email attachment scanning functionality of the Advanced Malware Protection (AMP) feature. This would cause the affected device to stop scanning and forwarding email messages.

Recommendations For versions 9.7.1 through 9.7.1-066, update to version 9.7.1-207 or later. For versions 9.7.2 prior to 9.7.2-047, update to version 9.7.2-047 or later. For all affected versions, ensure the AMP feature is properly configured and consider temporarily disabling the email attachment scanning functionality until the update is applied.