CVE-2004-1112

medium Cisco
CVSS v3 Base Score
5.1
AV:N/AC:H/Au:N/C:P/I:P/A:P
EPSS Score
0.9%
Exploitation probability in 30 days
Top 25% most likely to be exploited
Attack Characteristics
Attack Vector
Network
Attack Complexity
High
Confidentiality
P
Integrity
P
Availability
P
Published: January 10, 2005 (7794 days ago)
Last Modified: April 16, 2026
Vendor: Cisco
Source: NVD

Description

The buffer overflow trigger in Cisco Security Agent (CSA) before 4.0.3 build 728 waits five minutes for a user response before terminating the process, which could allow remote attackers to bypass the buffer overflow protection by sending additional buffer overflow attacks within the five minute timeout period.

CWE

NVD-CWE-Other

Affected Products

cisco security agentokena stormwatch

References

🔗 www.ciac.org 🔗 www.cisco.com 🔗 www.securityfocus.com 🔗 exchange.xforce.ibmcloud.com 🔗 www.ciac.org