Cisco.AnyConnect.VPN.Client.ActiveX.Code.Execution
Description
This indicates an attack attempt against a Code Execution vulnerability in Cisco AnyConnect Secure Mobility Client (formerly AnyConnect VPN Client).
This vulnerability is due to a validation error in the helper application. Remote attackers can exploit it to execute arbitrary code.
Affected Products
Cisco Systems AnyConnect Secure Mobility Client For Windows 2.3.0185 up to and including 2.3.0254
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Refer to the vendor's advisory, which addressed this vulnerability.
http://www.cisco.com/warp/public/707/cisco-sa-20110601-ac.shtml
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2020-10-28 | 16.951 | Sig Added |