====================================================================

                           CERT-Renater

               Note d'Information No. 2015/VULN120
_____________________________________________________________________

DATE                : 29/06/2015

HARDWARE PLATFORM(S): /

OPERATING SYSTEM(S):  Systems running Cisco Virtual WSA, Cisco ESA,
                                  Cisco SMA.

======================================================================
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150625-ironport
______________________________________________________________________

Cisco Security Advisory: Multiple Default SSH Keys Vulnerabilities in
Cisco Virtual WSA, ESA, and SMA

Advisory ID: cisco-sa-20150625-ironport

Revision 1.0

For Public Release 2015 June 25 16:00  UTC (GMT)

+-----------------------------------------------------------------------

Summary
=======

Cisco Web Security Virtual Appliance (WSAv), Cisco Email Security
Virtual Appliance (ESAv), and Cisco Security Management Virtual
Appliance (SMAv) are affected by the following vulnerabilities:

    Cisco Virtual WSA, ESA, and SMA Default Authorized SSH Key
Vulnerability
    Cisco Virtual WSA, ESA, and SMA Default SSH Host Keys Vulnerability


Cisco has released free software updates that address these
vulnerabilities. There are no workarounds for these vulnerabilities.

This advisory is available at the following link:

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150625-ironport

=========================================================
Serveur de référence du CERT-Renater
https://services.renater.fr/ssi/
==========================================================
+ CERT-RENATER          | tel : 01-53-94-20-44           +
+ 23 - 25 Rue Daviel    | fax : 01-53-94-20-41           +
+ 75013 Paris           | email: cert@support.renater.fr +
==========================================================