back to article We're two weeks into 2019, and an email can potentially knacker your Cisco message box – plus other bugs to fix

Cisco's security team's holiday season has ended with a bang: 18 patches, but thankfully only one of them rated “critical”. Switchzilla's E-mail Security Appliance's AsyncOS operating system has the honour of 2019's first-and-worst in CVE-2018-15453. The bug affects how the appliance handles S/MIME-signed e-mails. If the …

  1. Big Al 23

    Digital crims don't take holidays

    They spend all of their time hacking and harming society.

  2. Updraft102 Silver badge

    Headline generator:

    It's $DATE, and $THING is possible.

    1. ThomH

      It's two weeks into 2019, and El Reg is still not witty enough to come up with better headlines.

  3. John Smith 19 Gold badge

    It's 2018 and people still can't right protocol handlers properly.*

    Under what circumstances should a mal formed message ever attempt to be processed rather than discarded?

    Another classic failure of a SW development pattern.

    *Hint. If the protocol can be expressed in a state diagram design the core of the handler in an FSA design tool and have it write the actual code.

    Just how many message protocols are so complex they need a Turing complete language to handle all the possibilities?

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2020