Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The VPN downloader implementation in the WebLaunch feature in Cisco AnyConnect Secure Mobility Client 2.x before 2.5 MR6 on Windows, and 2.x before 2.5 MR6 and 3.x before 3.0 MR8 on Mac OS X and Linux, does not properly validate binaries that are received by the downloader process, which allows remote attackers to execute arbitrary code via vectors involving (1) ActiveX or (2) Java components, aka Bug ID CSCtw47523.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
多个平台下的Cisco AnyConnect Secure Mobility Client任意代码执行漏洞
Vulnerability Description
Cisco AnyConnect Secure Mobility是一个安全的企业移动解决方案。 基于Windows的Cisco AnyConnect Secure Mobility Client 2.5 MR6之前的2.x版本,基于Mac OS X和Linux的2.5 MR6之前的2.x版本和3.0 MR8之前的3.x版本中的WebLaunch功能中的VPN下载器的实现上存在漏洞,该漏洞源于未正确验证下载过程中收到的二进制代码。远程攻击者可利用该漏洞通过包含(1)ActiveX或(2)Java组件的向量执
CVSS Information
N/A
Vulnerability Type
N/A