var-201206-0085
Vulnerability from variot
The VPN downloader implementation in the WebLaunch feature in Cisco AnyConnect Secure Mobility Client 2.x before 2.5 MR6 on Windows, and 2.x before 2.5 MR6 and 3.x before 3.0 MR8 on Mac OS X and Linux, does not properly validate binaries that are received by the downloader process, which allows remote attackers to execute arbitrary code via vectors involving (1) ActiveX or (2) Java components, aka Bug ID CSCtw47523. The problem is Bug ID CSCtw47523 It is a problem.A third party may execute arbitrary code. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Cisco AnyConnect VPN Client. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists due to insufficient signature checks with the Cisco AnyConnect VPN Client. When the client is invoked through the ActiveX control it downloads and checks a file called vpndownloader.exe. This file has to be properly signed by Cisco. Once this file is downloaded it is run and downloads additional configuration files. Within the downloaded config file it is possible to force a download of executable files. Those files are not properly checked for valid certificates and are run on the host as soon as they are downloaded. The Cisco AnyConnect Secure Mobility Client is a Cisco Next-Generation VPN Client that provides remote IPsec (IKEv2) or SSL Virtual Private Network (VPN) connectivity to devices running Cisco IOS Software and Cisco 5500 Series Adaptive Security Appliances (ASA). This issue affects the VPN Downloader component. An attacker can exploit this issue by using social engineering techniques to coerce unsuspecting users to download and execute arbitrary applications. Failed exploit attempts will likely result in a denial-of-service condition. These issues are tracked by Cisco Bug IDs CSCtw47523 and CSCty45925. Cisco AnyConnect Secure Mobility is a secure enterprise mobility solution. Also known as Bug ID CSCtw47523.
- -- Vendor Response: Cisco has issued an update to correct this vulnerability. More details can be found at: http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco
-
-sa-20120620-ac
-
-- Disclosure Timeline: 2011-11-22 - Vulnerability reported to vendor 2012-08-22 - Coordinated public release of advisory
-
-- Credit: This vulnerability was discovered by:
-
gwslabs.com
-
-- About the Zero Day Initiative (ZDI): Established by TippingPoint, The Zero Day Initiative (ZDI) represents a best-of-breed model for rewarding security researchers for responsibly disclosing discovered vulnerabilities.
Researchers interested in getting paid for their security research through the ZDI can find more information and sign-up at:
http://www.zerodayinitiative.com
The ZDI is unique in how the acquired vulnerability information is used. TippingPoint does not re-sell the vulnerability details or any exploit code. Instead, upon notifying the affected product vendor, TippingPoint provides its customers with zero day protection through its intrusion prevention technology. Explicit details regarding the specifics of the vulnerability are not exposed to any parties until an official vendor patch is publicly available. Furthermore, with the altruistic aim of helping to secure a broader user base, TippingPoint provides this vulnerability information confidentially to security vendors (including competitors) who have a vulnerability protection or mitigation product.
Our vulnerability disclosure policy is available online at:
http://www.zerodayinitiative.com/advisories/disclosure_policy/
Follow the ZDI on Twitter:
http://twitter.com/thezdi
-----BEGIN PGP SIGNATURE----- Version: PGP Desktop 10.2.0 (Build 1950) Charset: utf-8
wsBVAwUBUDUGKFVtgMGTo1scAQJBPAf9H07i4XSMxk4rQiyN2q+nbl3EtBX0Rl1e xAplYDC/F+HWp0ZZGEQC+PDyvkkgMqlOpYVNcgZr7jHfxH82Aon4cWY02qb5C5mZ HJZbQkd0tvIUANGrOC860lPgHXkQQEroOdwSXAC+AM/11UN+3wDPdM/FSXEnzndT mQxcSgj7e5TzubW6A9NI0iHj8v+Ci38hPxC2r0JbmR3VKcbcBHqfV9By5PYDogGx Hgq87lolCGF/+DG6JP9e6zeYtPPntpq0SPHNZ77Ew5Vr/9cARf0iZn41auS20pgW j0hZC4YsC5nsQwYkns7jYO3nf6e9Jq69k3BjdudkbVe7zgb3/986Jg== =pj7G -----END PGP SIGNATURE-----
Show details on source website{
"affected_products": {
"_id": null,
"data": [
{
"_id": null,
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 2.5,
"vendor": "cisco",
"version": "2.5"
},
{
"_id": null,
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 2.5,
"vendor": "cisco",
"version": "3.0"
},
{
"_id": null,
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 1.6,
"vendor": "cisco",
"version": "2.4"
},
{
"_id": null,
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 1.6,
"vendor": "cisco",
"version": "2.3.254"
},
{
"_id": null,
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 1.6,
"vendor": "cisco",
"version": "2.3"
},
{
"_id": null,
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 1.6,
"vendor": "cisco",
"version": "2.3.185"
},
{
"_id": null,
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 1.6,
"vendor": "cisco",
"version": "2.4.0202"
},
{
"_id": null,
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 1.6,
"vendor": "cisco",
"version": "2.3.2016"
},
{
"_id": null,
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 1.6,
"vendor": "cisco",
"version": "2.2.140"
},
{
"_id": null,
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 1.6,
"vendor": "cisco",
"version": "2.4.1012"
},
{
"_id": null,
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "2.2.128"
},
{
"_id": null,
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "2.1"
},
{
"_id": null,
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "2.2"
},
{
"_id": null,
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "2.2.136"
},
{
"_id": null,
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "2.0"
},
{
"_id": null,
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "2.2.133"
},
{
"_id": null,
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 0.9,
"vendor": "cisco",
"version": "2.5.3041"
},
{
"_id": null,
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 0.9,
"vendor": "cisco",
"version": "2.5.3046"
},
{
"_id": null,
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 0.9,
"vendor": "cisco",
"version": "3.0.629"
},
{
"_id": null,
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 0.8,
"vendor": "cisco",
"version": "3.0 mr8"
},
{
"_id": null,
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 0.8,
"vendor": "cisco",
"version": "2.5 mr6"
},
{
"_id": null,
"model": "anyconnect secure mobility client",
"scope": "lt",
"trust": 0.8,
"vendor": "cisco",
"version": "2.x (windows"
},
{
"_id": null,
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 0.8,
"vendor": "cisco",
"version": "mac os x"
},
{
"_id": null,
"model": "anyconnect secure mobility client",
"scope": "lt",
"trust": 0.8,
"vendor": "cisco",
"version": "3.x (mac os x"
},
{
"_id": null,
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 0.8,
"vendor": "cisco",
"version": "linux)"
},
{
"_id": null,
"model": "anyconnect vpn client",
"scope": null,
"trust": 0.7,
"vendor": "cisco",
"version": null
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-12-156"
},
{
"db": "CNVD",
"id": "CNVD-2012-3352"
},
{
"db": "BID",
"id": "54107"
},
{
"db": "JVNDB",
"id": "JVNDB-2012-002810"
},
{
"db": "CNNVD",
"id": "CNNVD-201206-373"
},
{
"db": "NVD",
"id": "CVE-2012-2493"
}
]
},
"configurations": {
"_id": null,
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"cpe_match": [
{
"cpe22Uri": "cpe:/a:cisco:anyconnect_secure_mobility_client",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2012-002810"
}
]
},
"credits": {
"_id": null,
"data": "gwslabs.com",
"sources": [
{
"db": "ZDI",
"id": "ZDI-12-156"
}
],
"trust": 0.7
},
"cve": "CVE-2012-2493",
"cvss": {
"_id": null,
"data": [
{
"cvssV2": [
{
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "nvd@nist.gov",
"availabilityImpact": "COMPLETE",
"baseScore": 9.3,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 8.6,
"id": "CVE-2012-2493",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "HIGH",
"trust": 1.8,
"vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
{
"acInsufInfo": null,
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "ZDI",
"availabilityImpact": "COMPLETE",
"baseScore": 9.0,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"id": "CVE-2012-2493",
"impactScore": 8.5,
"integrityImpact": "PARTIAL",
"obtainAllPrivilege": null,
"obtainOtherPrivilege": null,
"obtainUserPrivilege": null,
"severity": "HIGH",
"trust": 0.7,
"userInteractionRequired": null,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:C",
"version": "2.0"
},
{
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "COMPLETE",
"baseScore": 9.3,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 8.6,
"id": "VHN-55774",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "HIGH",
"trust": 0.1,
"vectorString": "AV:N/AC:M/AU:N/C:C/I:C/A:C",
"version": "2.0"
}
],
"cvssV3": [],
"severity": [
{
"author": "nvd@nist.gov",
"id": "CVE-2012-2493",
"trust": 1.0,
"value": "HIGH"
},
{
"author": "NVD",
"id": "CVE-2012-2493",
"trust": 0.8,
"value": "High"
},
{
"author": "ZDI",
"id": "CVE-2012-2493",
"trust": 0.7,
"value": "HIGH"
},
{
"author": "CNNVD",
"id": "CNNVD-201206-373",
"trust": 0.6,
"value": "CRITICAL"
},
{
"author": "VULHUB",
"id": "VHN-55774",
"trust": 0.1,
"value": "HIGH"
}
]
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-12-156"
},
{
"db": "VULHUB",
"id": "VHN-55774"
},
{
"db": "JVNDB",
"id": "JVNDB-2012-002810"
},
{
"db": "CNNVD",
"id": "CNNVD-201206-373"
},
{
"db": "NVD",
"id": "CVE-2012-2493"
}
]
},
"description": {
"_id": null,
"data": "The VPN downloader implementation in the WebLaunch feature in Cisco AnyConnect Secure Mobility Client 2.x before 2.5 MR6 on Windows, and 2.x before 2.5 MR6 and 3.x before 3.0 MR8 on Mac OS X and Linux, does not properly validate binaries that are received by the downloader process, which allows remote attackers to execute arbitrary code via vectors involving (1) ActiveX or (2) Java components, aka Bug ID CSCtw47523. The problem is Bug ID CSCtw47523 It is a problem.A third party may execute arbitrary code. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Cisco AnyConnect VPN Client. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists due to insufficient signature checks with the Cisco AnyConnect VPN Client. When the client is invoked through the ActiveX control it downloads and checks a file called vpndownloader.exe. This file has to be properly signed by Cisco. Once this file is downloaded it is run and downloads additional configuration files. Within the downloaded config file it is possible to force a download of executable files. Those files are not properly checked for valid certificates and are run on the host as soon as they are downloaded. The Cisco AnyConnect Secure Mobility Client is a Cisco Next-Generation VPN Client that provides remote IPsec (IKEv2) or SSL Virtual Private Network (VPN) connectivity to devices running Cisco IOS Software and Cisco 5500 Series Adaptive Security Appliances (ASA). This issue affects the VPN Downloader component. \nAn attacker can exploit this issue by using social engineering techniques to coerce unsuspecting users to download and execute arbitrary applications. Failed exploit attempts will likely result in a denial-of-service condition. \nThese issues are tracked by Cisco Bug IDs CSCtw47523 and CSCty45925. Cisco AnyConnect Secure Mobility is a secure enterprise mobility solution. Also known as Bug ID CSCtw47523. \n\n- -- Vendor Response:\nCisco has issued an update to correct this vulnerability. More details can\nbe found at:\nhttp://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco\n- -sa-20120620-ac \n\n- -- Disclosure Timeline:\n2011-11-22 - Vulnerability reported to vendor\n2012-08-22 - Coordinated public release of advisory\n\n- -- Credit:\nThis vulnerability was discovered by:\n* gwslabs.com\n\n- -- About the Zero Day Initiative (ZDI):\nEstablished by TippingPoint, The Zero Day Initiative (ZDI) represents \na best-of-breed model for rewarding security researchers for responsibly\ndisclosing discovered vulnerabilities. \n\nResearchers interested in getting paid for their security research\nthrough the ZDI can find more information and sign-up at:\n\n http://www.zerodayinitiative.com\n\nThe ZDI is unique in how the acquired vulnerability information is\nused. TippingPoint does not re-sell the vulnerability details or any\nexploit code. Instead, upon notifying the affected product vendor,\nTippingPoint provides its customers with zero day protection through\nits intrusion prevention technology. Explicit details regarding the\nspecifics of the vulnerability are not exposed to any parties until\nan official vendor patch is publicly available. Furthermore, with the\naltruistic aim of helping to secure a broader user base, TippingPoint\nprovides this vulnerability information confidentially to security\nvendors (including competitors) who have a vulnerability protection or\nmitigation product. \n\nOur vulnerability disclosure policy is available online at:\n\n http://www.zerodayinitiative.com/advisories/disclosure_policy/\n\nFollow the ZDI on Twitter:\n\n http://twitter.com/thezdi\n\n-----BEGIN PGP SIGNATURE-----\nVersion: PGP Desktop 10.2.0 (Build 1950)\nCharset: utf-8\n\nwsBVAwUBUDUGKFVtgMGTo1scAQJBPAf9H07i4XSMxk4rQiyN2q+nbl3EtBX0Rl1e\nxAplYDC/F+HWp0ZZGEQC+PDyvkkgMqlOpYVNcgZr7jHfxH82Aon4cWY02qb5C5mZ\nHJZbQkd0tvIUANGrOC860lPgHXkQQEroOdwSXAC+AM/11UN+3wDPdM/FSXEnzndT\nmQxcSgj7e5TzubW6A9NI0iHj8v+Ci38hPxC2r0JbmR3VKcbcBHqfV9By5PYDogGx\nHgq87lolCGF/+DG6JP9e6zeYtPPntpq0SPHNZ77Ew5Vr/9cARf0iZn41auS20pgW\nj0hZC4YsC5nsQwYkns7jYO3nf6e9Jq69k3BjdudkbVe7zgb3/986Jg==\n=pj7G\n-----END PGP SIGNATURE-----\n\n\n",
"sources": [
{
"db": "NVD",
"id": "CVE-2012-2493"
},
{
"db": "JVNDB",
"id": "JVNDB-2012-002810"
},
{
"db": "ZDI",
"id": "ZDI-12-156"
},
{
"db": "CNVD",
"id": "CNVD-2012-3352"
},
{
"db": "BID",
"id": "54107"
},
{
"db": "VULHUB",
"id": "VHN-55774"
},
{
"db": "PACKETSTORM",
"id": "115808"
}
],
"trust": 3.24
},
"exploit_availability": {
"_id": null,
"data": [
{
"reference": "https://www.scap.org.cn/vuln/vhn-55774",
"trust": 0.1,
"type": "unknown"
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-55774"
}
]
},
"external_ids": {
"_id": null,
"data": [
{
"db": "NVD",
"id": "CVE-2012-2493",
"trust": 4.2
},
{
"db": "ZDI",
"id": "ZDI-12-156",
"trust": 0.8
},
{
"db": "JVNDB",
"id": "JVNDB-2012-002810",
"trust": 0.8
},
{
"db": "ZDI_CAN",
"id": "ZDI-CAN-1411",
"trust": 0.7
},
{
"db": "CNNVD",
"id": "CNNVD-201206-373",
"trust": 0.7
},
{
"db": "CNVD",
"id": "CNVD-2012-3352",
"trust": 0.6
},
{
"db": "CISCO",
"id": "20120620 MULTIPLE VULNERABILITIES IN CISCO ANYCONNECT SECURE MOBILITY CLIENT",
"trust": 0.6
},
{
"db": "NSFOCUS",
"id": "19849",
"trust": 0.6
},
{
"db": "BID",
"id": "54107",
"trust": 0.3
},
{
"db": "PACKETSTORM",
"id": "115808",
"trust": 0.2
},
{
"db": "VULHUB",
"id": "VHN-55774",
"trust": 0.1
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-12-156"
},
{
"db": "CNVD",
"id": "CNVD-2012-3352"
},
{
"db": "VULHUB",
"id": "VHN-55774"
},
{
"db": "BID",
"id": "54107"
},
{
"db": "JVNDB",
"id": "JVNDB-2012-002810"
},
{
"db": "PACKETSTORM",
"id": "115808"
},
{
"db": "CNNVD",
"id": "CNNVD-201206-373"
},
{
"db": "NVD",
"id": "CVE-2012-2493"
}
]
},
"id": "VAR-201206-0085",
"iot": {
"_id": null,
"data": true,
"sources": [
{
"db": "CNVD",
"id": "CNVD-2012-3352"
},
{
"db": "VULHUB",
"id": "VHN-55774"
}
],
"trust": 1.4222222
},
"iot_taxonomy": {
"_id": null,
"data": [
{
"category": [
"Network device"
],
"sub_category": null,
"trust": 0.6
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2012-3352"
}
]
},
"last_update_date": "2024-11-23T22:18:54.599000Z",
"patch": {
"_id": null,
"data": [
{
"title": "cisco-sa-20120620-ac",
"trust": 0.8,
"url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120620-ac"
},
{
"title": "26196",
"trust": 0.8,
"url": "http://tools.cisco.com/security/center/viewAlert.x?alertId=26196"
},
{
"title": "Update Rollup for ActiveX Kill Bits (2736233)",
"trust": 0.8,
"url": "http://technet.microsoft.com/en-us/security/advisory/2736233"
},
{
"title": "Java SE Development Kit 7, Update 9 (JDK 7u9)",
"trust": 0.8,
"url": "http://www.oracle.com/technetwork/java/javase/7u9-relnotes-1863279.html"
},
{
"title": "Java SE Development Kit 6, Update 37 (JDK 6u37)",
"trust": 0.8,
"url": "http://www.oracle.com/technetwork/java/javase/6u37-relnotes-1863283.html"
},
{
"title": "cisco-sa-20120620-ac",
"trust": 0.8,
"url": "http://www.cisco.com/cisco/web/support/JP/111/1115/1115492_cisco-sa-20120620-ac-j.html"
},
{
"title": "ActiveX \u306e Kill Bit \u66f4\u65b0\u30d7\u30ed\u30b0\u30e9\u30e0\u306e\u30ed\u30fc\u30eb\u30a2\u30c3\u30d7 (2736233)",
"trust": 0.8,
"url": "http://technet.microsoft.com/ja-jp/security/advisory/2736233"
},
{
"title": "Cisco has issued an update to correct this vulnerability. -sa-20120620-ac",
"trust": 0.7,
"url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco"
},
{
"title": "Patch for Cisco AnyConnect Secure Mobility Client VPN Downloader Arbitrary Code Execution Vulnerability (CNVD-2012-3352)",
"trust": 0.6,
"url": "https://www.cnvd.org.cn/patchInfo/show/18302"
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-12-156"
},
{
"db": "CNVD",
"id": "CNVD-2012-3352"
},
{
"db": "JVNDB",
"id": "JVNDB-2012-002810"
}
]
},
"problemtype_data": {
"_id": null,
"data": [
{
"problemtype": "CWE-20",
"trust": 1.9
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-55774"
},
{
"db": "JVNDB",
"id": "JVNDB-2012-002810"
},
{
"db": "NVD",
"id": "CVE-2012-2493"
}
]
},
"references": {
"_id": null,
"data": [
{
"trust": 2.3,
"url": "http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20120620-ac"
},
{
"trust": 0.8,
"url": "http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco"
},
{
"trust": 0.8,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2012-2493"
},
{
"trust": 0.8,
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2012-2493"
},
{
"trust": 0.6,
"url": "http://www.nsfocus.net/vulndb/19849"
},
{
"trust": 0.3,
"url": "http://www.cisco.com"
},
{
"trust": 0.1,
"url": "http://www.zerodayinitiative.com/advisories/disclosure_policy/"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2012-2493"
},
{
"trust": 0.1,
"url": "http://www.zerodayinitiative.com/advisories/zdi-12-156"
},
{
"trust": 0.1,
"url": "http://twitter.com/thezdi"
},
{
"trust": 0.1,
"url": "http://www.zerodayinitiative.com"
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-12-156"
},
{
"db": "CNVD",
"id": "CNVD-2012-3352"
},
{
"db": "VULHUB",
"id": "VHN-55774"
},
{
"db": "BID",
"id": "54107"
},
{
"db": "JVNDB",
"id": "JVNDB-2012-002810"
},
{
"db": "PACKETSTORM",
"id": "115808"
},
{
"db": "CNNVD",
"id": "CNNVD-201206-373"
},
{
"db": "NVD",
"id": "CVE-2012-2493"
}
]
},
"sources": {
"_id": null,
"data": [
{
"db": "ZDI",
"id": "ZDI-12-156",
"ident": null
},
{
"db": "CNVD",
"id": "CNVD-2012-3352",
"ident": null
},
{
"db": "VULHUB",
"id": "VHN-55774",
"ident": null
},
{
"db": "BID",
"id": "54107",
"ident": null
},
{
"db": "JVNDB",
"id": "JVNDB-2012-002810",
"ident": null
},
{
"db": "PACKETSTORM",
"id": "115808",
"ident": null
},
{
"db": "CNNVD",
"id": "CNNVD-201206-373",
"ident": null
},
{
"db": "NVD",
"id": "CVE-2012-2493",
"ident": null
}
]
},
"sources_release_date": {
"_id": null,
"data": [
{
"date": "2012-08-22T00:00:00",
"db": "ZDI",
"id": "ZDI-12-156",
"ident": null
},
{
"date": "2012-06-28T00:00:00",
"db": "CNVD",
"id": "CNVD-2012-3352",
"ident": null
},
{
"date": "2012-06-20T00:00:00",
"db": "VULHUB",
"id": "VHN-55774",
"ident": null
},
{
"date": "2012-06-20T00:00:00",
"db": "BID",
"id": "54107",
"ident": null
},
{
"date": "2012-06-22T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2012-002810",
"ident": null
},
{
"date": "2012-08-23T02:40:54",
"db": "PACKETSTORM",
"id": "115808",
"ident": null
},
{
"date": "2012-06-21T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201206-373",
"ident": null
},
{
"date": "2012-06-20T20:55:02.137000",
"db": "NVD",
"id": "CVE-2012-2493",
"ident": null
}
]
},
"sources_update_date": {
"_id": null,
"data": [
{
"date": "2012-08-22T00:00:00",
"db": "ZDI",
"id": "ZDI-12-156",
"ident": null
},
{
"date": "2012-06-28T00:00:00",
"db": "CNVD",
"id": "CNVD-2012-3352",
"ident": null
},
{
"date": "2012-06-21T00:00:00",
"db": "VULHUB",
"id": "VHN-55774",
"ident": null
},
{
"date": "2012-09-11T18:50:00",
"db": "BID",
"id": "54107",
"ident": null
},
{
"date": "2012-12-14T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2012-002810",
"ident": null
},
{
"date": "2012-06-27T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201206-373",
"ident": null
},
{
"date": "2024-11-21T01:39:08.943000",
"db": "NVD",
"id": "CVE-2012-2493",
"ident": null
}
]
},
"threat_type": {
"_id": null,
"data": "remote",
"sources": [
{
"db": "PACKETSTORM",
"id": "115808"
},
{
"db": "CNNVD",
"id": "CNNVD-201206-373"
}
],
"trust": 0.7
},
"title": {
"_id": null,
"data": "Cisco AnyConnect Secure Mobility Client Vulnerable to arbitrary code execution",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2012-002810"
}
],
"trust": 0.8
},
"type": {
"_id": null,
"data": "input validation",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201206-373"
}
],
"trust": 0.6
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…