Unrated severityNVD Advisory· Published Jun 27, 2013· Updated Apr 29, 2026

CVE-2013-3386

Description

The IronPort Spam Quarantine (ISQ) component in the web framework in IronPort AsyncOS on Cisco Email Security Appliance devices before 7.1.5-106 and 7.3, 7.5, and 7.6 before 7.6.3-019 and Content Security Management Appliance devices before 7.9.1-102 and 8.0 before 8.0.0-404 allows remote attackers to cause a denial of service (service crash or hang) via a high rate of TCP connection attempts, aka Bug IDs CSCzv25573 and CSCzv81712.

Affected products

Cisco Systems, Inc./Ironport Asyncos6 versions
cpe:2.3:o:cisco:ironport_asyncos:7.5:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:o:cisco:ironport_asyncos:7.5:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:ironport_asyncos:7.6:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:ironport_asyncos:7.9:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:ironport_asyncos:8.0:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:ironport_asyncos:*:*:*:*:*:*:*:*range: <=7.1.5
- cpe:2.3:o:cisco:ironport_asyncos:7.3:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000