Threat Level: green Handler on Duty: Yee Ching Tok

SANS ISC: Using Cisco CSA? Time to patch! SANS ISC InfoSec Forums

Participate: Learn more about our honeypot network

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Using Cisco CSA? Time to patch!

Cisco have just released an advisory covering a buffer overflow vulnerability in the Cisco Security Agent (CSA) for Windows, with remote code execution as the possible outcome.  CSA is a "personal firewall" style product, and usually deployed as a defense against exactly the sort of threat that the component itself is now vulnerable to.  Back in 2004, such a vulnerability would probably have led to a flurry of noisy network worms - today, drive-by installs of spyware are more likely, but at least as damaging. The bottom line is still the same: If you are using the vulnerable component, patch as soon as possible.



385 Posts
ISC Handler
Dec 6th 2007

Sign Up for Free or Log In to start participating in the conversation!