Cisco security flaw leads to Windows blue screen of death; confirms separate XSS vulnerability

A buffer overflow flaw used by the Cisco Security Agent for Microsoft Windows could lead to a blue screen of death, according to Cisco in its latest security advisory.

The buffer overflaw flaw can be exploited remotely and causes corruption of kernel memory, which leads to the dreaded Windows freeze or to arbitrary code execution, says Cisco.

Cisco has released free software updates that address this vulnerability.

Separately today, Cisco acknowledge that CiscoWorks Common Services is vulnerable to Cross Site Scripting (XSS) attacks from the CiscoWorks Server login page, http://server-name:portnumber. According to a Cisco Security Response; In both Windows and Solaris, the port numbers are 1741 for normal access, and the secure port number is 443. Both the Windows and Solaris versions of the Cisco Works Server login page are affected."

When this XSS vulnerability is exploited, malicious code or script is embedded within the URL and associated with an unsuccessful login attempt page refresh, Cisco adds.

There are no workarounds to the problem to which Cisco recommends applying a point-patch to address the vulnerability.

The flaw was discovered by David Lewis of LiquidMatrix.org.

The two security reports follow last week's Cisco Security Response confirming the ability to eavesdrop on remote calls using Cisco VoIP phones

More Cisco Security Advisories

More Cisco Security Responses

Go to Cisco Subnet for more Cisco news, blogs, discussion forums, security alerts, book giveaways, and more.

Recent Cisconet blog entries

Network World's IT Buyer's Guide: Cisco products

Subscribe to Network World's Cisco Alert, which includes a weekly digest of all Cisco Subnet items

• Cisco
• buffer overflow
• Cisco Security Agent
• Microsoft
• security
• Windows
• XSS