|
Cisco Security Agent Buffer Overflow Detection Security Bypass
|
|
Secunia Advisory:
|
SA13178
|
|
|
Release Date:
|
2004-11-12
|
|
Last Update:
|
2004-12-07
|
|
Popularity:
|
6,253 views
|
|
|
Critical:
|
 Less critical
|
|
Impact:
|
Security Bypass
|
|
Where:
|
From remote
|
|
Solution Status:
|
Vendor Patch
|
|
| Software: | Cisco Okena StormWatch 3.x Cisco Security Agent (CSA) 3.x Cisco Security Agent (CSA) 4.x
|
|
|
Subscribe:
|
Instant alerts on relevant vulnerabilities
|
|
| CVE reference: | CVE-2004-1112
|
|
Description: A vulnerability has been reported in Cisco Security Agent (CSA), which can be exploited by malicious people to bypass certain security features.
The vulnerability is caused due to an error in the buffer overflow detection functionality used for detecting exploitation of buffer overflow vulnerabilities. This can be exploited to bypass the offered protection by exploiting a buffer overflow vulnerability twice in rapid succession.
The vulnerability has been reported in the following versions:
* Cisco Security Agent 4.x (prior to version 4.0.3 build 728)
* Cisco Security Agent 3.x
* Okena Stormwatch 3.x
* Cisco Security Agent for CallManager (prior to version 4.0.3 build 728)
Solution: Update to CSA version 4.0.3.728 or later.
Cisco Security Agent for CallManager:
http://www.cisco.com/pcgi-bin/tablebuild.pl/cmva-3des
Other Cisco Security Agents:
http://www.cisco.com/pcgi-bin/tablebuild.pl/csahf-crypto
Place the agents into hidden user interface mode.
Provided and/or discovered by: Reported by vendor.
Changelog: 2004-11-20: Added Cisco Security Agent for CallManager as affected.
2004-12-07: Added CVE reference.
Original Advisory: http://www.cisco.com/warp/public/707/cisco-sa-20041111-csa.shtml
|
|
|
Track this Secunia Advisory
|
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.
Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.
|
|
|
About this Secunia Advisory
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|