Vulnslist

find the latest Cisco vulnerabilities

Cisco Secure Desktop Cache Cleaner Command Execution Vulnerability

cisco-sa-20150415-csd · Critical · Published · Updated

A vulnerability in a Cisco-signed Java Archive (JAR) executable Cache Cleaner component of Cisco Secure Desktop could allow an unauthenticated, remote attacker to execute arbitrary commands on the client host where the affected .jar file is executed. Command execution would occur with the privileges of the user. The Cache Cleaner feature has been deprecated since November 2012. There is no fixed software for this vulnerability. Cisco Secure Desktop packages that include the affected .jar files have been removed and are no longer available for download. Because Cisco does not control all existing Cisco Secure Desktop packages, customers are advised to ensure that their Java blacklist controls have been updated to avoid potential exploitation. Refer to the "Workarounds" section of this advisory for additional information on how to mitigate this vulnerability. Customers using Cisco Secure Desktop should migrate to the Cisco Host Scan standalone package. This advisory is available at the following link: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150415-csd

Cisco advisory ·CSAF JSON

Workarounds

An exploit of this vulnerability can be prevented by preventing the execution of the cache.jar file. This can be done by using the Java Blacklist Jar feature introduced with Java SE 6 Update 14. For information on this feature refer to the Java SE 6 Update 14 release notes, available
at http://www.oracle.com/technetwork/java/javase/6u14-137039.htmlhttp://www.oracle.com/technetwork/java/javase/6u14-137039.html .

The .jar files to be blacklisted are identified by the following SHA-1
message digests:

#Cisco - CSCup83001
mF8yk1Hxc1uH9UorvfG2GJ+ScqY=
yUcLgsHB7H6rf04gLNe0ikKrmfI=
UcdnWBajIuVvJjoGHAPA11Gkg7E=

Cisco has also requested that Java add these hashes to the blacklist by default. This change will be available in Java SE 8 Update 45.

CVEsCVE-2015-0691
Cisco Bug IDsCSCup83001
CVSS ScoreBase 9.3
Base 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C/E:F/RL:W/RC:C
Product Names From Source
Cisco Secure Desktop

Related Products

Product CVE Evidence
Cisco Secure Desktop CVE-2015-0691 Cisco OpenVuln