Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A certain ActiveX control in CSDWebInstaller.ocx in Cisco Secure Desktop (CSD) does not properly verify the signature of an unspecified downloaded program, which allows remote attackers to execute arbitrary code by spoofing the CSD installation process, a different vulnerability than CVE-2010-0589.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cisco Secure Desktop CSDWebInstaller.ocx ActiveX控件任意代码执行漏洞
Vulnerability Description
Cisco Secure Desktop(CSD)是美国思科(Cisco)公司的一款安全桌面产品,它可通过加密功能降低远程用户注销后或SSL VPN会话超时后Cookies、浏览器历史记录、临时文件和下载内容在系统上所遗留的风险。 Cisco Secure Desktop(CSD)的CSDWebInstaller.ocx中的某个ActiveX控件没有正确验证未明下载程序的签名。远程攻击者可以通过欺骗CSD安装进程执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A