CVE-2004-1112

Currently unrated

Key Information:

Vendor: Cisco
Status: Security Agent; Stormwatch
Vendor: CVE Published:; 10 January 2005

Summary

The buffer overflow trigger in Cisco Security Agent (CSA) before 4.0.3 build 728 waits five minutes for a user response before terminating the process, which could allow remote attackers to bypass the buffer overflow protection by sending additional buffer overflow attacks within the five minute timeout period.

References

http://www.securityfocus.com/bid/11659

vdb-entryx_refsource_BID

https://exchange.xforce.ibmcloud.com/vulnerabilities/18037

vdb-entryx_refsource_XF

http://www.cisco.com/warp/public/707/cisco-sa-20041111-cs...

vendor-advisoryx_refsource_CISCO

Timeline

Vulnerability published
Jan 10, 2005
Vulnerability Reserved
Nov 30, 2004