Vulnslist

find the latest Cisco vulnerabilities

Multiple Vulnerabilities in Cisco AnyConnect Secure Mobility Client

cisco-sa-20120620-ac · Critical · Published · Updated

The Cisco AnyConnect Secure Mobility Client is affected by the following vulnerabilities: Cisco AnyConnect Secure Mobility Client VPN Downloader Arbitrary Code Execution Vulnerability Cisco AnyConnect Secure Mobility Client VPN Downloader Software Downgrade Vulnerability Cisco AnyConnect Secure Mobility Client and Cisco Secure Desktop Hostscan Downloader Software Downgrade Vulnerability Cisco AnyConnect Secure Mobility Client 64-bit Java VPN Downloader Arbitrary Code Execution Vulnerability Cisco Secure Desktop Arbitrary Code Execution Vulnerability Cisco has released software updates that address these vulnerabilities. Workarounds that mitigate these vulnerabilities are available. This advisory is available at the following link: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120620-ac

Cisco advisory ·CSAF JSON

Workarounds

Blacklists can be enforced manually, based on the instructions provided in the “Details” section, or by applying updates from Microsoft (2736233http://technet.microsoft.com/en-us/security/advisory/2736233) or Oracle (Java SE 6 Update 37http://www.oracle.com/technetwork/java/javase/6u37-relnotes-1863283.html and Java SE 7 Update 9http://www.oracle.com/technetwork/java/javase/7u9-relnotes-1863279.html) that include ActiveX CLSIDs or Java applet Message Digests. Anyone opting to enforce blacklists of the vulnerable ActiveX control CLSIDs and Java applet Message Digests can prevent the vulnerable code from instantiating. As a result, WebLaunch initiation of vulnerable software installation and upgrades will be prevented; however, pre-deployed software initiated through standalone methods and WebLaunch initiation of fixed software will continue to function.

Note: For any of the vulnerabilities in cryptographically signed controls or applets, any system that trusts Cisco's signing certificate chain may be impacted, even if Cisco AnyConnect Secure Mobility Client has never been installed on the system. Using the ActiveX Control kill-bit and Java Message Digest workarounds will protect systems on which Cisco AnyConnect Secure Mobility Client is not or will not be installed.
Mitigations that can be deployed on Cisco devices in a network are available in the Cisco Applied Intelligence companion document for this advisory: http://tools.cisco.com/security/center/content/CiscoAppliedMitigationBulletin/cisco-amb-20120620-achttp://tools.cisco.com/security/center/content/CiscoAppliedMitigationBulletin/cisco-amb-20120620-ac

CVEsCVE-2012-2493, CVE-2012-2494, CVE-2012-2495, CVE-2012-2496, CVE-2012-4655
Cisco Bug IDsCSCtw47523, CSCtw48681, CSCtx74235, CSCty45925, CSCtz76128, CSCtz78204
CVSS ScoreBase 9.3
Base 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C/E:F/RL:OF/RC:C
Base 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N/E:F/RL:OF/RC:C
Base 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P/E:F/RL:OF/RC:C
Product Names From Source
Cisco Secure Desktop, Cisco AnyConnect Secure Mobility Client, Cisco Secure Client

Related Products

Product CVE Evidence
Cisco Secure Desktop CVE-2012-4655 Cisco OpenVuln
Cisco Secure Desktop CVE-2012-2496 Cisco OpenVuln
Cisco Secure Desktop CVE-2012-2495 Cisco OpenVuln
Cisco Secure Desktop CVE-2012-2494 Cisco OpenVuln
Cisco Secure Desktop CVE-2012-2493 Cisco OpenVuln
Cisco Secure Client CVE-2012-4655 Cisco OpenVuln
Cisco Secure Client CVE-2012-2496 Cisco OpenVuln
Cisco Secure Client CVE-2012-2495 Cisco OpenVuln
Cisco Secure Client CVE-2012-2494 Cisco OpenVuln
Cisco Secure Client CVE-2012-2493 Cisco OpenVuln
Cisco AnyConnect Secure Mobility Client CVE-2012-4655 Cisco OpenVuln
Cisco AnyConnect Secure Mobility Client CVE-2012-2496 Cisco OpenVuln
Cisco AnyConnect Secure Mobility Client CVE-2012-2495 Cisco OpenVuln
Cisco AnyConnect Secure Mobility Client CVE-2012-2494 Cisco OpenVuln
Cisco AnyConnect Secure Mobility Client CVE-2012-2493 Cisco OpenVuln