PT-2007-6601 · Cisco · Cisco Security Agent
Publicado
2007-12-15
·
Atualizado
2018-10-15
·
CVE-2007-5580
CVSS v2.0
10
Alta
| Vetor | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Cisco Security Agent versions 4.5.1 through 4.5.1.671
Cisco Security Agent versions 5.0 through 5.0.0.224
Cisco Security Agent versions 5.1 through 5.1.0.105
Cisco Security Agent versions 5.2 through 5.2.0.237
Description
A buffer overflow issue in a certain driver of Cisco Security Agent allows remote attackers to execute arbitrary code via a crafted SMB packet in a TCP session on port 139 or 445.
Recommendations
For versions 4.5.1 through 4.5.1.671, update to version 4.5.1.672 or later.
For versions 5.0 through 5.0.0.224, update to version 5.0.0.225 or later.
For versions 5.1 through 5.1.0.105, update to version 5.1.0.106 or later.
For versions 5.2 through 5.2.0.237, update to version 5.2.0.238 or later.
Correção
Buffer Overflow
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Cisco Security Agent