فا

‫ Cisco AnyConnect VPN Client Two Vulnerabilities

IRCAD2011061226
ID:IRCAD2011061226
Release Date: 2011-06-02
Last Update: 2011-06-03
Criticality level: Highly critical
Software:
Cisco AnyConnect VPN Client 2.x
 
Description:
Two vulnerabilities have been reported in Cisco AnyConnect VPN Client, which can be exploited by malicious people with physical access to bypass certain security restrictions and by malicious people to compromise a user's system.
 
1)      An error in the graphical user interface when displayed on the Windows logon screen can be exploited to perform certain actions with the privileges of the LocalSystem account.
Successful exploitation of this vulnerability requires the Start Before Logon (SBL) feature to be enabled.
2)      An error in the helper application (e.g. "Cisco.AnyConnect.VPNWeb.1" ActiveX control) insecurely implements the "url" property, which leads to insufficient authenticity validation of downloaded executables and can be exploited to download and execute an arbitrary program.
 
Solution:
Update to a fixed version (please see the vendor's advisory for details).
 
References:
Cisco (cisco-sa-20110601-ac):
 
iDefense:
 
Secunia:
http://secunia.com/advisories/44812/

نظرات

بدون نظر
شما برای نظر دادن باید وارد شوید

نوشته

 
تاریخ ایجاد: 25 بهمن 1390

امتیاز

امتیاز شما
تعداد امتیازها:0