The buffer overflow trigger in Cisco Security Agent (CSA) before 4.0.3 build 728 waits five minutes for a user response before terminating the process, which could allow remote attackers to bypass the buffer overflow protection by sending additional buffer overflow attacks within the five minute timeout period.
References
Link | Resource |
---|---|
http://www.ciac.org/ciac/bulletins/p-036.shtml | Vendor Advisory |
http://www.cisco.com/warp/public/707/cisco-sa-20041111-csa.shtml | Vendor Advisory |
http://www.securityfocus.com/bid/11659 | Vendor Advisory |
https://exchange.xforce.ibmcloud.com/vulnerabilities/18037 |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2004-12-01T05:00:00
Updated: 2017-07-10T14:57:01
Reserved: 2004-11-30T00:00:00
Link: CVE-2004-1112
JSON object: View
NVD Information
Status : Modified
Published: 2005-01-10T05:00:00.000
Modified: 2017-07-11T01:30:45.137
Link: CVE-2004-1112
JSON object: View
Redhat Information
No data.
CWE