SecurityTracker.com
Keep Track of the Latest Vulnerabilities
with SecurityTracker!
    Home    |    View Topics    |    Search    |    Contact Us    |    Help    |   

SecurityTracker
Archives


Welcome to SecurityTracker!
 
Click to Sign Up
Sign Up
Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary
Instant Alerts
Buy our Premium Vulnerability Notification Service to receive customized, instant alerts
Affiliates
Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!
Partners
Become a Partner and License Our Database or Notification Service
Report a Bug
Report a vulnerability that you have found to SecurityTracker
bugs
@
securitytracker.com
Sign Up!





Category:  Application (Security)  >  Cisco Security Agent Vendors:  Cisco
Cisco Security Agent for Windows Buffer Overflow Lets Remote Users Execute Arbitrary Code
SecurityTracker Alert ID:  1019046
SecurityTracker URL:  http://securitytracker.com/id?1019046
CVE Reference:  CVE-2007-5580   (Links to External Site)
Date:  Dec 5 2007
Impact:  Execution of arbitrary code via network, Root access via network
Fix Available:  Yes   Vendor Confirmed:  Yes  
Advisory:  Cisco Security Advisory
Version(s): 4.5.1, 5.0, 5.1, 5.2
Description:  A vulnerability was reported in Cisco Security Agent for Windows. A remote user can execute arbitrary code on the target system.

A remote user can send specially crafted data to TCP port 139 or 445 on the target system to trigger a buffer overflow in the 'Csatdi.sys' driver and execute arbitrary code on the target system. The code will run with kernel level privileges.

The following Cisco products include the agent software and are affected:

Cisco Unified Communications Manager (CallManager)
Cisco Conference Connection (CCC)
Emergency Responder
IPCC Express
IPCC Enterprise
IPCC Hosted
IP Interactive Voice Response (IP IVR)
IP Queue Manager
Intelligent Contact Management (ICM)
Cisco Voice Portal (CVP)
Cisco Unified Meeting Place
Cisco Personal Assistant (PA)
Cisco Unity
Cisco Unity Connection
Cisco Unity Bridge
Cisco Internet Service Node (ISN)

Cisco has assigned Cisco bug ID CSCsl00618 to this vulnerability.

NSFocus Security Team reported this vulnerability.
Impact:  A remote user can execute arbitrary code on the target system.
Solution:  The vendor has issued the following hotfixes.

For 4.5.1:
Hotfix 4.5.1.672

For 5.0:
Hotfix 5.0.0.225

For 5.1:
Hotfix 5.1.0.106

For 5.2:
Hotfix 5.2.0.238

The advisory also lists fixes for Cisco Security Agent for Cisco IP Communications Products and Cisco Security Agent for Cisco Security Manager.

The Cisco advisory is available at:

http://www.cisco.com/warp/public/707/cisco-sa-20071205-csa.shtml
Vendor URL:  www.cisco.com/warp/public/707/cisco-sa-20071205-csa.shtml (Links to External Site)
Cause:  Boundary error
Underlying OS:  Windows (Any)

Message History:   None.

 Source Message Contents
Date:  Wed, 5 Dec 2007 14:05:13 -0500
Subject:  Cisco Security Advisory: Cisco Security Agent for Windows Csatdi.sys Remote Buffer Overflow Vulnerability

 
 
http://www.cisco.com/warp/public/707/cisco-sa-20071205-csa.shtml
 
CVE-2007-5580


Go to the Top of This SecurityTracker Archive Page



Home   |    View Topics   |    Search   |    Contact Us   |    Help

Copyright 2007, SecurityGlobal.net LLC