6 matches found
CVE-2010-3040
Multiple stack-based buffer overflows in agent.exe in Setup Manager in Cisco Intelligent Contact Manager ICM before 7.0 allow remote attackers to execute arbitrary code via a long parameter in a 1 HandleUpgradeAll, 2 AgentUpgrade, 3 HandleQueryNodeInfoReq, or 4 HandleUpgradeTrace TCP packet, aka...
Stack overflow
Multiple stack-based buffer overflows in agent.exe in Setup Manager in Cisco Intelligent Contact Manager ICM before 7.0 allow remote attackers to execute arbitrary code via a long parameter in a 1 HandleUpgradeAll, 2 AgentUpgrade, 3 HandleQueryNodeInfoReq, or 4 HandleUpgradeTrace TCP packet, aka...
ZDI-10-232: Cisco ICM Setup Manager Agent.exe HandleUpgradeAll Remote Code Execution Vulnerability
ZDI-10-232: Cisco ICM Setup Manager Agent.exe HandleUpgradeAll Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-10-232 November 7, 2010 -- CVE ID: CVE-2010-3040 -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C -- Affected Vendors: Cisco -- Affected Products: Cisco Unifie...
ZDI-10-234: Cisco ICM Setup Manager Agent.exe HandleQueryNodeInfoReq Remote Code Execution Vulnerability
ZDI-10-234: Cisco ICM Setup Manager Agent.exe HandleQueryNodeInfoReq Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-10-234 November 7, 2010 -- CVE ID: CVE-2010-3040 -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C -- Affected Vendors: Cisco -- Affected Products: Cisco...
Cisco ICM Setup Manager Agent.exe HandleUpgradeTrace Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Cisco ICM. Authentication is not required to exploit this vulnerability. The flaw exists within the Agent.exe component which listens by default on TCP port 40078. When handling the...
Cisco ICM Setup Manager Agent.exe HandleUpgradeAll Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Cisco ICM. Authentication is not required to exploit this vulnerability. The flaw exists within the Agent.exe component which listens by default on TCP port 40078. When processing the...