Cisco Management Center for Security Agent Remote Code Execution Vulnerability

The Management Center for Cisco Security Agent is affected by a vulnerability that may allow an unauthenticated attacker to perform remote code execution on the affected device.  Cisco Security Agent provides threat protection for server and desktop computing systems. Cisco Security Agent can function in a standalone manner or can be managed by the Management Center for Cisco Security Agent.  The Management Center for Cisco Security Agent is affected by a vulnerability that could allow an unauthenticated attacker to perform remote code execution on the affected device.  A successful exploit could allow the attacker to modify agent policies and system configuration and perform other administrative tasks.

Cisco has released free software updates and a workaround is also available to mitigate this vulnerability.  Cisco Security Agent installations on end-point workstations or servers are not affected by this vulnerability.

 The full advisory is posted at  http://www.cisco.com/warp/public/707/cisco-sa-20110216-csa.shtml

There is also a FAQ:  http://www.cisco.com/web/about/security/intelligence/cvss-qandas.html

Advertisements