Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

Highlighted
New Member

CSA500186 always trigers rule 178

Hi,

All applications, I started on my latop, triger the rule 178.

"The process 'C:\Program Files\Microsoft Office\OFFICE11\OUTLOOK.EXE' (as user KFKI\eperjesitamas) attempted to call the function VirtualProtect from a buffer (the return address was 0xa524e6). The code at this address is '8b55086a 00546a40 5152ff15 04c6a500 5983f800 74138b4d 0c8b5508 5152ff15' This either happens when a process uses self-modifying code or when a process has been subverted by a buffer overflow attack. The operation was allowed. "

Is this normal and I need to allow all my softwares to run?

1 REPLY
Blue

Re: CSA500186 always trigers rule 178

1. Is this only your laptop?

If so, it may be something else you have installed or the way Outlook is configured.

2. Is the code pattern always the same?

If so, you could create an exception based on the code pattern when Outlook makes that call from a buffer.

Tom S

135
Views
3
Helpful
1
Replies
CreatePlease login to create content