Skip to main content

Cisco Security Agent Multiple Remote Code Execution Vulnerabilities

Last Update Date: 22 Nov 2011 14:30 Release Date: 22 Nov 2011 5701 Views

RISK: High Risk

TYPE: Security software and application - Security Software & Appliance

TYPE: Security Software & Appliance

Multiple vulnerabilities have been identified in Cisco Security Agent, which can be exploited by unauthenticated attacker to perform remote code execution on the affected device. These  vulnerabilities are in a third-party library (Oracle Outside In).
 


Impact

  • Remote Code Execution

System / Technologies affected

 

  •     Cisco Security Agent software version 6.x

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

  • Update to Cisco Security Agent software version 6.0.2.151

Vulnerability Identifier


Source


Related Link