:A vulnerability has been reported in Cisco Security Agent for Windows, which can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system.The vulnerability is caused due to a boundary error in an unspecified system driver used by the application and can be exploited to cause a buffer overflow via a specially crafted packet sent to port 139/TCP or 445/TCP.Successful exploitation may allow execution of arbitrary code.The vulnerability is reported in all versions of Cisco Security Agent for Windows (managed or unmanaged). Please see the vendor’s advisory for a list of Cisco products that include the agent.Solution:Apply updates.– Managed Cisco Security Agents –Cisco Security Agent version 4.5.1:Apply Hotfix 4.5.1.672.Cisco Security Agent version 5.0:Apply Hotfix 5.0.0.225.Cisco Security Agent version 5.1:Apply Hotfix 5.1.0.106.Cisco Security Agent version 5.2:Apply Hotfix 5.2.0.238.Hotfixes available at:http://www.cisco.com/pcgi-bin/tablebuild.pl/csahf-crypto?psrtdcat20e2– Cisco Security Agent for Cisco IP Communications Products –Cisco Security Agent version 4.5.1:Apply CUCM-CSA-4.5.1.672-2.0.7-k9.exe.Cisco Security Agent version 5.0:Apply CUCM-CSA-5.0.0.225-3.0.7-k9.exeFixes available at:http://www.cisco.com/pcgi-bin/tablebuild.pl/cmva-3des?psrtdcat20e2– Cisco Security Agent for Cisco Security Manager –Apply fcs-csamc-hotfix-5.2.0.238-w2k3-k9-CSM.zip.http://www.cisco.com/pcgi-bin/tablebuild.pl/csm-app?psrtdcat20e2Provided and/or discovered by:The vendor credits NSFocus Security Team.Original Advisory:Cisco (cisco-sa-20071205-csa):http://www.cisco.com/warp/public/707/cisco-sa-20071205-csa.shtml

Original post by amit