Cisco AnyConnect Secure Mobility Client < 2.3.254 Multiple Vulnerabilities
High Nessus Plugin ID 54954
SynopsisThe VPN client installed on the remote Windows host has multiple vulnerabilities.
DescriptionThe version of Cisco AnyConnect Secure Mobility Client installed on the remote host is earlier than 2.3.254 and may have the following vulnerabilities :
- When the client is obtained from the VPN headend using a web browser, a helper application performs the download and installation. This helper application does not verify the authenticity of the downloaded installer, which could allow an attacker to send malicious code to the user instead. Only versions prior to 2.3.185 are affected by this vulnerability. (CVE-2011-2039)
- Unprivileged users can elevate to LocalSystem privileges by enabling the Start Before Logon feature and performing unspecified actions with the Cisco AnyConnect Secure Mobility client interface in the Windows logon screen. (CVE-2011-2041)
SolutionUpgrade to version 2.3.254 or later.