TopVuln

High-risk vulnerability digests

CVE-2010-3040

  • CRITICAL

psirt@cisco.com

Details

CVSS v2
10.0
NVD published
2010-11-09 21:00:03
Affected versions
cpe:2.3:a:cisco:intelligent_contact_manager:*:*:*:*:*:*:*:* cpe:2.3:a:cisco:intelligent_contact_manager:5.0:*:*:*:*:*:*:* cpe:2.3:a:cisco:intelligent_contact_manager:5.0\(0\):*:*:*:*:*:*:* cpe:2.3:a:cisco:intelligent_contact_manager:5.0\(0\)_sr2:*:*:*:*:*:*:* cpe:2.3:a:cisco:intelligent_contact_manager:5.0\(0\)_sr3:*:*:*:*:*:*:* cpe:2.3:a:cisco:intelligent_contact_manager:5.0\(0\)_sr4:*:*:*:*:*:*:* cpe:2.3:a:cisco:intelligent_contact_manager:5.0\(0\)_sr5:*:*:*:*:*:*:* cpe:2.3:a:cisco:intelligent_contact_manager:5.0\(0\)_sr7:*:*:*:*:*:*:* cpe:2.3:a:cisco:intelligent_contact_manager:5.0\(0\)_sr8:*:*:*:*:*:*:* cpe:2.3:a:cisco:intelligent_contact_manager:5.0\(0\)_sr9:*:*:*:*:*:*:* cpe:2.3:a:cisco:intelligent_contact_manager:5.0\(0\)_sr10:*:*:*:*:*:*:* cpe:2.3:a:cisco:intelligent_contact_manager:5.0\(0\)_sr11:*:*:*:*:*:*:* cpe:2.3:a:cisco:intelligent_contact_manager:5.0\(0\)_sr12:*:*:*:*:*:*:* cpe:2.3:a:cisco:intelligent_contact_manager:5.0\(0\)_sr13:*:*:*:*:*:*:* cpe:2.3:a:cisco:intelligent_contact_manager:5.0\(0\)a:*:*:*:*:*:*:* cpe:2.3:a:cisco:intelligent_contact_manager:6.0\(0\):*:*:*:*:*:*:* cpe:2.3:a:cisco:intelligent_contact_manager:6.0\(0\)_sr1:*:*:*:*:*:*:* cpe:2.3:a:cisco:intelligent_contact_manager:6.0\(0\)_sr2:*:*:*:*:*:*:* cpe:2.3:a:cisco:intelligent_contact_manager:6.0\(0\)_sr3:*:*:*:*:*:*:* cpe:2.3:a:cisco:intelligent_contact_manager:6.0\(0\)_sr4:*:*:*:*:*:*:* cpe:2.3:a:cisco:intelligent_contact_manager:6.0\(0\)_sr5:*:*:*:*:*:*:* cpe:2.3:a:cisco:intelligent_contact_manager:6.0\(0\)_sr6:*:*:*:*:*:*:* cpe:2.3:a:cisco:intelligent_contact_manager:6.0\(0\)_sr7:*:*:*:*:*:*:* cpe:2.3:a:cisco:intelligent_contact_manager:6.0\(0\)_sr8:*:*:*:*:*:*:* cpe:2.3:a:cisco:intelligent_contact_manager:6.0\(0\)_sr9:*:*:*:*:*:*:* cpe:2.3:a:cisco:intelligent_contact_manager:6.0\(0\)_sr10:*:*:*:*:*:*:* cpe:2.3:a:cisco:intelligent_contact_manager:6.0\(0\)a:*:*:*:*:*:*:*
Summary
Multiple stack-based buffer overflows in agent.exe in Setup Manager in Cisco Intelligent Contact Manager (ICM) before 7.0 allow remote attackers to execute arbitrary code via a long parameter in a (1) HandleUpgradeAll, (2) AgentUpgrade, (3) HandleQueryNodeInfoReq, or (4) HandleUpgradeTrace TCP packet, aka Bug IDs CSCti45698, CSCti45715, CSCti45726, and CSCti46164.
Remediation
Not available in our cache.
Exploit info
Not available in our cache.

View on NVD

TopVuln sends digest emails with high-risk CVE picks across multiple authoritative sources—curated with EPSS and AI. Choose daily per-stream emails and optional weekly or monthly roundups.

Subscribe — free email digest or paid plan

Information is aggregated from multiple authoritative sources for convenience; verify with NVD and vendors before operational decisions.