This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:cisco:secure_desktop
Detail
VendorCiscoFirst view 2006-10-18
ProductSecure DesktopLast view 2012-09-24
VersionTypeApplication
Edition 
Language 
Update 

Activity : Overall

COMMON PLATFORM ENUMERATION : Repartition per Version

CPE NameAffected CVE
cpe:/a:cisco:secure_desktop:3.6.50051
cpe:/a:cisco:secure_desktop:3.6.40211
cpe:/a:cisco:secure_desktop:3.6.30021
cpe:/a:cisco:secure_desktop:3.6.20021
cpe:/a:cisco:secure_desktop:3.6.1851
Hide | Show 21 More...
CPE NameAffected CVE
cpe:/a:cisco:secure_desktop:3.6.1811
cpe:/a:cisco:secure_desktop:3.6.10011
cpe:/a:cisco:secure_desktop:3.61
cpe:/a:cisco:secure_desktop:3.5.8412
cpe:/a:cisco:secure_desktop:3.5.20082
cpe:/a:cisco:secure_desktop:3.5.20012
cpe:/a:cisco:secure_desktop:3.5.10772
cpe:/a:cisco:secure_desktop:3.53
cpe:/a:cisco:secure_desktop:3.4.20483
cpe:/a:cisco:secure_desktop:3.4.24
cpe:/a:cisco:secure_desktop:3.4.14
cpe:/a:cisco:secure_desktop:3.44
cpe:/a:cisco:secure_desktop:3.34
cpe:/a:cisco:secure_desktop:3.2.14
cpe:/a:cisco:secure_desktop:3.24
cpe:/a:cisco:secure_desktop:3.1.1.452
cpe:/a:cisco:secure_desktop:3.1.1.337
cpe:/a:cisco:secure_desktop:3.1.1.275
cpe:/a:cisco:secure_desktop:3.1.14
cpe:/a:cisco:secure_desktop:3.14
cpe:/a:cisco:secure_desktop5

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
9.32012-09-24CVE-2012-4655NetworkMediumNone Requ...
4.32012-06-20CVE-2012-2495NetworkMediumNone Requ...
9.32011-02-28CVE-2011-0925NetworkMediumNone Requ...
9.32011-02-25CVE-2011-0926NetworkMediumNone Requ...
2.12010-10-14CVE-2009-5008LocalLowNone Requ...
Hide | Show 7 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
9.32010-04-15CVE-2010-0589NetworkMediumNone Requ...
4.32010-02-03CVE-2010-0440NetworkMediumNone Requ...
4.62006-11-08CVE-2006-5808LocalLowNone Requ...
4.62006-11-08CVE-2006-5807LocalLowNone Requ...
2.12006-11-08CVE-2006-5806LocalLowNone Requ...
2.12006-10-18CVE-2006-5394LocalLowNone Requ...
2.12006-10-18CVE-2006-5393LocalLowNone Requ...

CWE : Common Weakness Enumeration

%idName
71% (5)CWE-20Improper Input Validation
14% (1)CWE-264Permissions, Privileges, and Access Controls
14% (1)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')

Open Source Vulnerability Database (OSVDB)

idDescription
73338Cisco Secure Desktop (CSD) CSDWebInstaller.ocx ActiveX inst.exe Program Name ...
73337Cisco Secure Desktop (CSD) CSDWebInstaller.ocx ActiveX Installation Process S...
68633Cisco Secure Desktop (CSD) Crafted Executable Local Policy Restriction Bypass
63809Cisco Secure Desktop (CSD) CSDWebInstaller ActiveX Signature Verification Arb...
62069Cisco Secure Desktop (CSD) /translation POST Request XSS
Hide | Show 5 More...
idDescription
33065Cisco Secure Desktop SSL VPN Local Memory Disclosure
32406Cisco Secure Desktop Cross VPN Session Information Disclosure
30308Cisco Secure Desktop (CSD) Installation Permission Weakness Local Privilege E...
30307Cisco Secure Desktop (CSD) Unspecified System Policy Evasion
30306Cisco Secure Desktop (CSD) SSL VPN Client Browser Session Information Local D...

OpenVAS Exploits

idDescription
2012-09-12Name : Cisco Products ActiveX Control Multiple Vulnerabilities
File : nvt/gb_cisco_prdts_activex_mult_vuln.nasl

Information Assurance Vulnerability Management (IAVM)

idDescription
2012-A-0104Multiple Vulnerabilities in Cisco AnyConnect Secure Mobility Client
Severity : Category I - VMSKEY : V0033046

Snort® IPS/IDS

DateDescription
2014-01-10Cisco Secure Desktop CSDWebInstaller ActiveX function call access
RuleID : 24282 - Type : BROWSER-PLUGINS - Revision : 3
2014-01-10Cisco Secure Desktop CSDWebInstaller ActiveX clsid access
RuleID : 24281 - Type : BROWSER-PLUGINS - Revision : 3

Nessus® Vulnerability Scanner

idDescription
2012-09-11Name : The remote Windows host is missing an update that disables selected ActiveX c...
File : smb_kb_2736233.nasl - Type : ACT_GATHER_INFO
2012-07-02Name : The remote host has software installed that is affected by multiple vulnerabi...
File : macosx_cisco_anyconnect_multiple.nasl - Type : ACT_GATHER_INFO
2012-07-02Name : The remote host has software installed that is affected by a multiple vulnera...
File : cisco_anyconnect_vpn_hostscan_downgrade.nasl - Type : ACT_GATHER_INFO