Details of VAR-200501-0258

ID

VAR-200501-0258

CVE

CVE-2004-1112

TITLE

Cisco CSA Bypass security mechanism vulnerability

Trust: 0.6

sources: CNNVD: CNNVD-200501-034

DESCRIPTION

The buffer overflow trigger in Cisco Security Agent (CSA) before 4.0.3 build 728 waits five minutes for a user response before terminating the process, which could allow remote attackers to bypass the buffer overflow protection by sending additional buffer overflow attacks within the five minute timeout period. This aids attackers in exploiting latent vulnerabilities in services protected by the affected package. Versions prior to 4.0.3.728 are reported susceptible to this vulnerability. Versions before CAS4.0.3build728 do not properly handle buffer overflow attacks. If the user has no choice, it will choose to terminate the operation by default. If the attacker continues to carry out the overflow attack during this period of time waiting for the user response, it will be possible

Trust: 1.26

sources: NVD: CVE-2004-1112 // BID: 11659 // VULHUB: VHN-9542

AFFECTED PRODUCTS

vendor:	okena	model:	stormwatch	scope:	eq	version:	3.x	Trust: 1.9
vendor:	cisco	model:	security agent	scope:	eq	version:	4.0.3	Trust: 1.3
vendor:	cisco	model:	security agent	scope:	eq	version:	4.0.2	Trust: 1.3
vendor:	cisco	model:	security agent	scope:	eq	version:	4.0.1	Trust: 1.3
vendor:	cisco	model:	security agent	scope:	eq	version:	4.0	Trust: 1.3
vendor:	cisco	model:	security agent	scope:	eq	version:	3	Trust: 1.0
vendor:	cisco	model:	security agent	scope:	eq	version:	3.x	Trust: 0.3
vendor:	cisco	model:	security agent	scope:	ne	version:	4.0.3.728	Trust: 0.3

sources: BID: 11659 // CNNVD: CNNVD-200501-034 // NVD: CVE-2004-1112

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2004-1112
value:	MEDIUM
Trust: 1.0
CNNVD:	CNNVD-200501-034
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-9542
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2004-1112
severity:	MEDIUM
baseScore:	5.1
vectorString:	AV:N/AC:H/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	HIGH
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	4.9
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.0
VULHUB:	VHN-9542
severity:	MEDIUM
baseScore:	5.1
vectorString:	AV:N/AC:H/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	HIGH
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	4.9
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-9542 // CNNVD: CNNVD-200501-034 // NVD: CVE-2004-1112

PROBLEMTYPE DATA

problemtype:

NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2004-1112

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200501-034

TYPE

buffer overflow

Trust: 0.6

sources: CNNVD: CNNVD-200501-034

EXTERNAL IDS

db:	BID	id:	11659	Trust: 2.0
db:	NVD	id:	CVE-2004-1112	Trust: 1.7
db:	CNNVD	id:	CNNVD-200501-034	Trust: 0.7
db:	CISCO	id:	20041111 CRAFTED TIMED ATTACK EVADES CISCO SECURITY AGENT PROTECTIONS	Trust: 0.6
db:	XF	id:	18037	Trust: 0.6
db:	CIAC	id:	P-036	Trust: 0.6
db:	VULHUB	id:	VHN-9542	Trust: 0.1

sources: VULHUB: VHN-9542 // BID: 11659 // CNNVD: CNNVD-200501-034 // NVD: CVE-2004-1112

REFERENCES

url:	http://www.cisco.com/warp/public/707/cisco-sa-20041111-csa.shtml	Trust: 2.0
url:	http://www.securityfocus.com/bid/11659	Trust: 1.7
url:	http://www.ciac.org/ciac/bulletins/p-036.shtml	Trust: 1.7
url:	https://exchange.xforce.ibmcloud.com/vulnerabilities/18037	Trust: 1.1
url:	http://xforce.iss.net/xforce/xfdb/18037	Trust: 0.6
url:	http://www.cisco.com/en/us/products/sw/secursw/ps5057/	Trust: 0.3

sources: VULHUB: VHN-9542 // BID: 11659 // CNNVD: CNNVD-200501-034 // NVD: CVE-2004-1112

CREDITS

Cisco PSIRT※ psirt@cisco.com

Trust: 0.6

sources: CNNVD: CNNVD-200501-034

SOURCES

db:	VULHUB	id:	VHN-9542
db:	BID	id:	11659
db:	CNNVD	id:	CNNVD-200501-034
db:	NVD	id:	CVE-2004-1112

LAST UPDATE DATE

2024-08-14T14:08:55.586000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-9542	date:	2017-07-11T00:00:00
db:	BID	id:	11659	date:	2004-11-11T00:00:00
db:	CNNVD	id:	CNNVD-200501-034	date:	2005-10-20T00:00:00
db:	NVD	id:	CVE-2004-1112	date:	2017-07-11T01:30:45.137

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-9542	date:	2005-01-10T00:00:00
db:	BID	id:	11659	date:	2004-11-11T00:00:00
db:	CNNVD	id:	CNNVD-200501-034	date:	2004-11-10T00:00:00
db:	NVD	id:	CVE-2004-1112	date:	2005-01-10T05:00:00