This script is Copyright (C) 2013 Tenable Network Security, Inc.
The remote host has an endpoint security application installed that
is potentially affected by multiple vulnerabilities.
According to the version identified on the Management Center for Cisco
Agents web interface, the version of Cisco Security Agent installed on
the remote host is affected by multiple vulnerabilities :
- An unspecified directory traversal vulnerability exists
in the Management Center. (CVE-2010-0146)
- An unspecified SQL injection vulnerability exists in the
Management Center. (CVE-2010-0147)
- An unspecified denial of service (DoS) vulnerability
exists in Cisco Security Agent release 5.2. Note that
Windows and Sun Solaris versions are not affected by
this issue. (CVE-2010-0148)
See also :
Upgrade to Cisco Security Agent 18.104.22.168 / 22.214.171.1246 / 126.96.36.199 or later.
Risk factor :
High / CVSS Base Score : 9.0
CVSS Temporal Score : 7.4
Public Exploit Available : true