Lucene search
HistoryFeb 25, 2011 - 6:00 p.m.
CVE-2011-0926
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
7.3
Confidence
Low
EPSS
0.859
Percentile
98.6%
A certain ActiveX control in CSDWebInstaller.ocx in Cisco Secure Desktop (CSD) does not properly verify the signature of an unspecified downloaded program, which allows remote attackers to execute arbitrary code by spoofing the CSD installation process, a different vulnerability than CVE-2010-0589.
Affected configurations
Node
ciscosecure_desktop
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cisco | secure_desktop | * | cpe:2.3:a:cisco:secure_desktop:*:*:*:*:*:*:*:* |
References
Related
prion
prion
Code injection
2011-02-25 18:00:00
Code injection
2011-02-28 16:00:00
Design/Logic Flaw
2010-04-15 17:30:00
cvelist
cvelist
cve
cve
nvd
nvd
CVE-2011-0925
2011-02-28 16:00:01
CVE-2010-0589
2010-04-15 17:30:00
securityvulns
securityvulns
kaspersky
kaspersky
KLA10106 ACE vulnerability in Cisco Secure Desktop
2010-04-15 00:00:00
zdi
zdi
saint
saint
Cisco Secure Desktop CSDWebInstaller code exec
2011-03-23 00:00:00
Cisco Secure Desktop CSDWebInstaller code exec
2011-03-23 00:00:00
Cisco Secure Desktop CSDWebInstaller code exec
2011-03-23 00:00:00
checkpoint_advisories
checkpoint_advisories
Cisco Secure Desktop CSDWebInstaller Code Execution (CVE-2011-0926)
2011-05-16 00:00:00
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
7.3
Confidence
Low
EPSS
0.859
Percentile
98.6%
Related for NVD:CVE-2011-0926