CVE-2011-2039

2011-06-0219:55:04

CWE-20

[email protected]

web.nvd.nist.gov

CVSS2

7.6

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

AI Score

7.4

Confidence

Low

EPSS

0.807

Percentile

98.4%

JSON

The helper application in Cisco AnyConnect Secure Mobility Client (formerly AnyConnect VPN Client) before 2.3.185 on Windows, and on Windows Mobile, downloads a client executable file (vpndownloader.exe) without verifying its authenticity, which allows remote attackers to execute arbitrary code via the url property to a certain ActiveX control in vpnweb.ocx, aka Bug ID CSCsy00904.

Affected configurations

Nvd

Node

ciscoanyconnect_secure_mobility_clientRange≤2.3

ciscoanyconnect_secure_mobility_clientMatch2.0

ciscoanyconnect_secure_mobility_clientMatch2.1

ciscoanyconnect_secure_mobility_clientMatch2.2

ciscoanyconnect_secure_mobility_clientMatch2.2.128

ciscoanyconnect_secure_mobility_clientMatch2.2.133

ciscoanyconnect_secure_mobility_clientMatch2.2.136

ciscoanyconnect_secure_mobility_clientMatch2.2.140

AND

microsoftwindows

microsoftwindows_mobile

VendorProductVersionCPE
ciscoanyconnect_secure_mobility_client*cpe:2.3:a:cisco:anyconnect_secure_mobility_client:*:*:*:*:*:*:*:*
ciscoanyconnect_secure_mobility_client2.0cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.0:*:*:*:*:*:*:*
ciscoanyconnect_secure_mobility_client2.1cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.1:*:*:*:*:*:*:*
ciscoanyconnect_secure_mobility_client2.2cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.2:*:*:*:*:*:*:*
ciscoanyconnect_secure_mobility_client2.2.128cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.2.128:*:*:*:*:*:*:*
ciscoanyconnect_secure_mobility_client2.2.133cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.2.133:*:*:*:*:*:*:*
ciscoanyconnect_secure_mobility_client2.2.136cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.2.136:*:*:*:*:*:*:*
ciscoanyconnect_secure_mobility_client2.2.140cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.2.140:*:*:*:*:*:*:*
microsoftwindows*cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*
microsoftwindows_mobile*cpe:2.3:o:microsoft:windows_mobile:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	anyconnect_secure_mobility_client	*	cpe:2.3:a:cisco:anyconnect_secure_mobility_client::::::::
cisco	anyconnect_secure_mobility_client	2.0	cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.0:::::::*
cisco	anyconnect_secure_mobility_client	2.1	cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.1:::::::*
cisco	anyconnect_secure_mobility_client	2.2	cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.2:::::::*
cisco	anyconnect_secure_mobility_client	2.2.128	cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.2.128:::::::*
cisco	anyconnect_secure_mobility_client	2.2.133	cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.2.133:::::::*
cisco	anyconnect_secure_mobility_client	2.2.136	cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.2.136:::::::*
cisco	anyconnect_secure_mobility_client	2.2.140	cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.2.140:::::::*
microsoft	windows	*	cpe:2.3:o:microsoft:windows::::::::
microsoft	windows_mobile	*	cpe:2.3:o:microsoft:windows_mobile::::::::