Cisco Secure Desktop ActiveX Control Executable File Arbitrary File Download Vulnerability

Bugtraq ID: 39478
Class: Input Validation Error
CVE: CVE-2010-0589
Remote: Yes
Local: No
Published: Apr 14 2010 12:00AM
Updated: Jul 13 2010 04:17PM
Credit: Anonymous researcher working with TippingPoint's Zero Day Initiative.
Vulnerable: Cisco Secure Desktop 3.4.2048
Cisco Secure Desktop 3.1.1
Cisco Secure Desktop 3.2
Cisco Secure Desktop 3.1.1.45
Cisco Secure Desktop 3.1.1.33
Cisco Secure Desktop 3.1
Not Vulnerable: Cisco Secure Desktop 3.5.1077
Cisco Secure Desktop 3.5.841


 

Privacy Statement
Copyright 2010, SecurityFocus