CVE-2010-3040

Description

Multiple stack-based buffer overflows in agent.exe in Setup Manager in Cisco Intelligent Contact Manager (ICM) before 7.0 allow remote attackers to execute arbitrary code via a long parameter in a (1) HandleUpgradeAll, (2) AgentUpgrade, (3) HandleQueryNodeInfoReq, or (4) HandleUpgradeTrace TCP packet, aka Bug IDs CSCti45698, CSCti45715, CSCti45726, and CSCti46164.

Affected products

• Cisco / intelligent_contact_manager6.0\(0\)a\(1\)
• Cisco / intelligent_contact_manager5.0 – 5.0
• Cisco / intelligent_contact_manager5.0(0) – 5.0(0)
• Cisco / intelligent_contact_manager5.0(0)_sr2 – 5.0(0)_sr2
• Cisco / intelligent_contact_manager5.0(0)_sr3 – 5.0(0)_sr3
• Cisco / intelligent_contact_manager5.0(0)_sr4 – 5.0(0)_sr4
• Cisco / intelligent_contact_manager5.0(0)_sr5 – 5.0(0)_sr5
• Cisco / intelligent_contact_manager5.0(0)_sr7 – 5.0(0)_sr7
• Cisco / intelligent_contact_manager5.0(0)_sr8 – 5.0(0)_sr8
• Cisco / intelligent_contact_manager5.0(0)_sr9 – 5.0(0)_sr9
• Cisco / intelligent_contact_manager5.0(0)_sr10 – 5.0(0)_sr10
• Cisco / intelligent_contact_manager5.0(0)_sr11 – 5.0(0)_sr11
• Cisco / intelligent_contact_manager5.0(0)_sr12 – 5.0(0)_sr12
• Cisco / intelligent_contact_manager5.0(0)_sr13 – 5.0(0)_sr13
• Cisco / intelligent_contact_manager5.0(0)a – 5.0(0)a
• Cisco / intelligent_contact_manager6.0(0) – 6.0(0)
• Cisco / intelligent_contact_manager6.0(0)_sr1 – 6.0(0)_sr1
• Cisco / intelligent_contact_manager6.0(0)_sr2 – 6.0(0)_sr2
• Cisco / intelligent_contact_manager6.0(0)_sr3 – 6.0(0)_sr3
• Cisco / intelligent_contact_manager6.0(0)_sr4 – 6.0(0)_sr4
• Cisco / intelligent_contact_manager6.0(0)_sr5 – 6.0(0)_sr5
• Cisco / intelligent_contact_manager6.0(0)_sr6 – 6.0(0)_sr6
• Cisco / intelligent_contact_manager6.0(0)_sr7 – 6.0(0)_sr7
• Cisco / intelligent_contact_manager6.0(0)_sr8 – 6.0(0)_sr8
• Cisco / intelligent_contact_manager6.0(0)_sr9 – 6.0(0)_sr9
• Cisco / intelligent_contact_manager6.0(0)_sr10 – 6.0(0)_sr10
• Cisco / intelligent_contact_manager6.0(0)a – 6.0(0)a

References

• VENDOR_ADVISORYhttp://www.zerodayinitiative.com/advisories/ZDI-10-233/
• VENDOR_ADVISORYhttp://www.zerodayinitiative.com/advisories/ZDI-10-234/
• MISChttp://securitytracker.com/id?1024693
• VENDOR_ADVISORYhttp://tools.cisco.com/security/center/viewAlert.x?alertId=21726
• VENDOR_ADVISORYhttp://www.zerodayinitiative.com/advisories/ZDI-10-232/
• VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2010/2914
• VENDOR_ADVISORYhttp://secunia.com/advisories/42146
• MISChttp://www.securityfocus.com/bid/44699
• VENDOR_ADVISORYhttp://www.zerodayinitiative.com/advisories/ZDI-10-235/