Cisco has released a patch that addresses the vulnerability and is included by default in Cisco AsyncOS for Cisco Secure Email Software releases 15.5.1-055 and later.