Cisco Security Agent for Microsoft Windows Crafted SMB Packet Remote Overflow
Critical Nessus Plugin ID 32131
SynopsisThe remote Windows host has an application that is affected by a buffer overflow vulnerability.
DescriptionThe version of Cisco Security Agent installed on the remote host is affected by a buffer overflow vulnerability. By sending a specially- crafted SMB request to the agent, an unauthenticated attacker may be able to execute arbitrary code with SYSTEM level privileges.
Solution- Cisco Security Agent version 4.5.1, upgrade to 184.108.40.2062
- Cisco Security Agent version 5.0, upgrade to 220.127.116.11
- Cisco Security Agent version 5.1, upgrade to 18.104.22.168
- Cisco Security Agent version 5.2, upgrade to 22.214.171.124