Lucene search

CiscoCVE-2015-6305

HistorySep 26, 2015 - 1:59 a.m.

CVE-2015-6305

2015-09-2601:59:09

CWE-426

cisco

web.nvd.nist.gov

cve-2015-6305

untrusted search path vulnerability

cmainthread::launchdownloader

cisco anyconnect secure mobility client

windows

local users

privileges

cve-2015-4211

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.4

Confidence

High

EPSS

0.001

Percentile

40.3%

JSON

Untrusted search path vulnerability in the CMainThread::launchDownloader function in vpndownloader.exe in Cisco AnyConnect Secure Mobility Client 2.0 through 4.1 on Windows allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by dbghelp.dll, aka Bug ID CSCuv01279. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-4211.

Affected configurations

Nvd

Node

ciscoanyconnect_secure_mobility_clientMatch2.0.0343

ciscoanyconnect_secure_mobility_clientMatch2.1.0.148

ciscoanyconnect_secure_mobility_clientMatch2.2.0133

ciscoanyconnect_secure_mobility_clientMatch2.2.0136

ciscoanyconnect_secure_mobility_clientMatch2.2.0140

ciscoanyconnect_secure_mobility_clientMatch2.3.0185

ciscoanyconnect_secure_mobility_clientMatch2.3.0254

ciscoanyconnect_secure_mobility_clientMatch2.3.1003

ciscoanyconnect_secure_mobility_clientMatch2.3.2016

ciscoanyconnect_secure_mobility_clientMatch2.4.0202

ciscoanyconnect_secure_mobility_clientMatch2.4.1012

ciscoanyconnect_secure_mobility_clientMatch2.5.0217

ciscoanyconnect_secure_mobility_clientMatch2.5.2006

ciscoanyconnect_secure_mobility_clientMatch2.5.2010

ciscoanyconnect_secure_mobility_clientMatch2.5.2011

ciscoanyconnect_secure_mobility_clientMatch2.5.2014

ciscoanyconnect_secure_mobility_clientMatch2.5.2017

ciscoanyconnect_secure_mobility_clientMatch2.5.2018

ciscoanyconnect_secure_mobility_clientMatch2.5.2019

ciscoanyconnect_secure_mobility_clientMatch2.5.3041

ciscoanyconnect_secure_mobility_clientMatch2.5.3046

ciscoanyconnect_secure_mobility_clientMatch2.5.3051

ciscoanyconnect_secure_mobility_clientMatch2.5.3054

ciscoanyconnect_secure_mobility_clientMatch2.5.3055

ciscoanyconnect_secure_mobility_clientMatch2.5_base

ciscoanyconnect_secure_mobility_clientMatch3.0.0

ciscoanyconnect_secure_mobility_clientMatch3.0.0629

ciscoanyconnect_secure_mobility_clientMatch3.0.1047

ciscoanyconnect_secure_mobility_clientMatch3.0.2052

ciscoanyconnect_secure_mobility_clientMatch3.0.3050

ciscoanyconnect_secure_mobility_clientMatch3.0.3054

ciscoanyconnect_secure_mobility_clientMatch3.0.4235

ciscoanyconnect_secure_mobility_clientMatch3.0.5075

ciscoanyconnect_secure_mobility_clientMatch3.0.5080

ciscoanyconnect_secure_mobility_clientMatch3.0.09231

ciscoanyconnect_secure_mobility_clientMatch3.0.09266

ciscoanyconnect_secure_mobility_clientMatch3.0.09353

ciscoanyconnect_secure_mobility_clientMatch3.1\(60\)

ciscoanyconnect_secure_mobility_clientMatch3.1.0

ciscoanyconnect_secure_mobility_clientMatch3.1.02043

ciscoanyconnect_secure_mobility_clientMatch3.1.05182

ciscoanyconnect_secure_mobility_clientMatch3.1.05187

ciscoanyconnect_secure_mobility_clientMatch3.1.06073

ciscoanyconnect_secure_mobility_clientMatch3.1.07021

ciscoanyconnect_secure_mobility_clientMatch4.0\(48\)

ciscoanyconnect_secure_mobility_clientMatch4.0\(64\)

ciscoanyconnect_secure_mobility_clientMatch4.0\(2049\)

ciscoanyconnect_secure_mobility_clientMatch4.0.0

ciscoanyconnect_secure_mobility_clientMatch4.0.00048

ciscoanyconnect_secure_mobility_clientMatch4.0.00051

ciscoanyconnect_secure_mobility_clientMatch4.1.0

AND

microsoftwindows

VendorProductVersionCPE
ciscoanyconnect_secure_mobility_client2.0.0343cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.0.0343:*:*:*:*:*:*:*
ciscoanyconnect_secure_mobility_client2.1.0.148cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.1.0.148:*:*:*:*:*:*:*
ciscoanyconnect_secure_mobility_client2.2.0133cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.2.0133:*:*:*:*:*:*:*
ciscoanyconnect_secure_mobility_client2.2.0136cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.2.0136:*:*:*:*:*:*:*
ciscoanyconnect_secure_mobility_client2.2.0140cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.2.0140:*:*:*:*:*:*:*
ciscoanyconnect_secure_mobility_client2.3.0185cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.3.0185:*:*:*:*:*:*:*
ciscoanyconnect_secure_mobility_client2.3.0254cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.3.0254:*:*:*:*:*:*:*
ciscoanyconnect_secure_mobility_client2.3.1003cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.3.1003:*:*:*:*:*:*:*
ciscoanyconnect_secure_mobility_client2.3.2016cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.3.2016:*:*:*:*:*:*:*
ciscoanyconnect_secure_mobility_client2.4.0202cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.4.0202:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	anyconnect_secure_mobility_client	2.0.0343	cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.0.0343:::::::*
cisco	anyconnect_secure_mobility_client	2.1.0.148	cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.1.0.148:::::::*
cisco	anyconnect_secure_mobility_client	2.2.0133	cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.2.0133:::::::*
cisco	anyconnect_secure_mobility_client	2.2.0136	cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.2.0136:::::::*
cisco	anyconnect_secure_mobility_client	2.2.0140	cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.2.0140:::::::*
cisco	anyconnect_secure_mobility_client	2.3.0185	cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.3.0185:::::::*
cisco	anyconnect_secure_mobility_client	2.3.0254	cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.3.0254:::::::*
cisco	anyconnect_secure_mobility_client	2.3.1003	cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.3.1003:::::::*
cisco	anyconnect_secure_mobility_client	2.3.2016	cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.3.2016:::::::*
cisco	anyconnect_secure_mobility_client	2.4.0202	cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.4.0202:::::::*