Multiple vulnerabilities in Cisco AnyConnect SMC

Описание

Multiple serious vulnerabilities have been found in Cisco AnyConnect Secure Mobility Client. Malicious users can exploit these vulnerabilities to gain privileges or write arbitrary files.

Below is a complete list of vulnerabilities

1. An unknown vulnerability can be exploited locally via a specially deigned IPC messages;
2. Improper access control implementation and other unknown vulnerability can be exploited locally via a specially designed messages.

Первичный источник обнаружения

Связанные продукты

• Cisco-AnyConnect-Secure-Mobility-Client

Список CVE

• CVE-2015-0663
  high
• CVE-2015-0662
  high
• CVE-2015-0665
  high
• CVE-2015-0664
  warning

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com