Vulnslist

find the latest Cisco vulnerabilities

Cisco IP Communicator Certificate Trust List Man-in-the-Middle Attack Vulnerability

Cisco-SA-20120810-CVE-2012-2490 · Medium · Published · Updated

Cisco IP Communicator contains a vulnerability that could allow an unauthenticated, remote attacker to conduct man-in-the-middle attacks on a targeted system. The vulnerability is due insufficient validation of signing certificates in the Certificate Trust List which have been accepted by end users. An unauthenticated, remote attacker could exploit this vulnerability by impersonating trusted servers through crafted certificates. If successful, the attacker could launch further attacks on the system. Cisco has confirmed this vulnerability and released software updates. To successfully exploit this vulnerability, Cisco IP Communicator must be restarted. An attacker may use misleading language or instructions to convince a user to restart the device, or may use other means or attacks in an attempt to restart the device. The CVSS score indicates that functional exploit code exists; however, the code is not known to be publicly available.

Cisco advisory ·CSAF JSON

Workarounds

Administrators are advised to apply the appropriate updates.

Administrators are advised to allow only trusted users to have network access.

Administrators are advised to monitor affected systems.

CVEsCVE-2012-2490
Cisco Bug IDsNA
CVSS ScoreBase 6.8
Base 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P/E:F/RL:OF/RC:C
Product Names From Source
Cisco IP Communicator

CSAF Product Statuses

Product Status Source CVE Rows
Cisco IP Communicator known_affected cisco_csaf CVE-2012-2490 1

Related Products

Product CVE Evidence
Cisco IP Communicator CVE-2012-2490 Cisco OpenVuln