Cisco Security Agent Vulnerable to Privilege Escalation
cisco-sa-20051129-csa · NA · Published · Updated
Cisco Security Agent (CSA) is a security software agent that provides threat protection for server and desktop computing systems. CSA agents can be managed by CiscoWorks VMS Management Center for Cisco Security Agents or can be standalone agents running on Cisco IP Communications application servers. Standalone agents for Cisco IP Communications application servers must be manually installed on the IP Communications application server. A vulnerability exists in CSA agents that can allow a privilege escalation through locally executed software, providing a normal user or attacker with local system level privileges on a Windows workstation or server running managed or standalone CSA 4.5.0 or 4.5.1 agents. Cisco has made free software available to address this vulnerability for affected customers. This advisory is posted at https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20051129-csa