2 matches found
CVE-2007-5580
CVE-2007-5580 is a remote buffer overflow in Cisco Security Agent on Windows caused by a driver not validating SMB data, exploitable via crafted SMB packets over TCP ports 139 or 445. Affected CSA versions include Windows 4.5.1 (<= 4.5.1.671/672 hotfix path), 5.0 (<= 5.0.0.225), 5.1 (<= ...
CVE-2004-1112
The CVE-2004-1112 entry concerns Cisco Security Agent (CSA) prior to 4.0.3 build 728. A buffer overflow trigger waits five minutes for a user response before terminating, which could let remote attackers bypass the overflow protection by issuing additional overflow attempts within the timeout. Af...