Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
10
CVSSv2

CVE-2010-3040

Published: 09/11/2010 Updated: 10/11/2010
CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10
VMScore: 890
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Subscribe to Cisco

Vulnerability Summary

Multiple stack-based buffer overflows in agent.exe in Setup Manager in Cisco Intelligent Contact Manager (ICM) prior to 7.0 allow remote malicious users to execute arbitrary code via a long parameter in a (1) HandleUpgradeAll, (2) AgentUpgrade, (3) HandleQueryNodeInfoReq, or (4) HandleUpgradeTrace TCP packet, aka Bug IDs CSCti45698, CSCti45715, CSCti45726, and CSCti46164.

Vulnerable Product Search on Vulmon Subscribe to Product

cisco intelligent contact manager 5.0\\(0\\)_sr2

cisco intelligent contact manager 5.0\\(0\\)_sr3

cisco intelligent contact manager 5.0\\(0\\)_sr4

cisco intelligent contact manager 5.0\\(0\\)_sr5

cisco intelligent contact manager 6.0\\(0\\)

cisco intelligent contact manager 5.0\\(0\\)_sr11

cisco intelligent contact manager 5.0\\(0\\)_sr13

cisco intelligent contact manager 5.0\\(0\\)_sr7

cisco intelligent contact manager 5.0\\(0\\)_sr9

cisco intelligent contact manager 6.0\\(0\\)_sr6

cisco intelligent contact manager 6.0\\(0\\)_sr8

cisco intelligent contact manager

cisco intelligent contact manager 5.0

cisco intelligent contact manager 5.0\\(0\\)

cisco intelligent contact manager 5.0\\(0\\)a

cisco intelligent contact manager 6.0\\(0\\)_sr10

cisco intelligent contact manager 6.0\\(0\\)_sr2

cisco intelligent contact manager 6.0\\(0\\)_sr3

cisco intelligent contact manager 6.0\\(0\\)_sr4

cisco intelligent contact manager 6.0\\(0\\)a

cisco intelligent contact manager 5.0\\(0\\)_sr10

cisco intelligent contact manager 5.0\\(0\\)_sr12

cisco intelligent contact manager 5.0\\(0\\)_sr8

cisco intelligent contact manager 6.0\\(0\\)_sr1

cisco intelligent contact manager 6.0\\(0\\)_sr5

cisco intelligent contact manager 6.0\\(0\\)_sr7

cisco intelligent contact manager 6.0\\(0\\)_sr9

References

CWE-119http://www.zerodayinitiative.com/advisories/ZDI-10-235/http://secunia.com/advisories/42146http://www.securityfocus.com/bid/44699http://www.vupen.com/english/advisories/2010/2914http://tools.cisco.com/security/center/viewAlert.x?alertId=21726http://www.zerodayinitiative.com/advisories/ZDI-10-234/http://securitytracker.com/id?1024693http://www.zerodayinitiative.com/advisories/ZDI-10-233/http://www.zerodayinitiative.com/advisories/ZDI-10-232/https://nvd.nist.gov
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypassCVE-2024-30051remoteCVE-2024-27954CVE-2023-51483CVE-2023-47782SSRFCVE-2024-24715CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook