cvelistv5 - cve-2012-2495

cve-2012-2495

Vulnerability from cvelistv5

Published

2012-06-20 20:00

Modified

2024-09-16 18:28

Severity ?

Summary

References

▼	URL	Tags
	ykramarz@cisco.com	http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120620-ac	Vendor Advisory
	af854a3a-2127-422b-91ae-364da2661108	http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120620-ac	Vendor Advisory

Impacted products

Vendor

Product

Version

▼

n/a

Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T19:34:25.881Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "20120620 Multiple Vulnerabilities in Cisco AnyConnect Secure Mobility Client",
            "tags": [
              "vendor-advisory",
              "x_refsource_CISCO",
              "x_transferred"
            ],
            "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120620-ac"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "The HostScan downloader implementation in Cisco AnyConnect Secure Mobility Client 3.x before 3.0 MR8 and Cisco Secure Desktop before 3.6.6020 does not compare the timestamp of offered software to the timestamp of installed software, which allows remote attackers to force a version downgrade by using (1) ActiveX or (2) Java components to offer signed code that corresponds to an older software release, aka Bug ID CSCtx74235."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2012-06-20T20:00:00Z",
        "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "shortName": "cisco"
      },
      "references": [
        {
          "name": "20120620 Multiple Vulnerabilities in Cisco AnyConnect Secure Mobility Client",
          "tags": [
            "vendor-advisory",
            "x_refsource_CISCO"
          ],
          "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120620-ac"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@cisco.com",
          "ID": "CVE-2012-2495",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "The HostScan downloader implementation in Cisco AnyConnect Secure Mobility Client 3.x before 3.0 MR8 and Cisco Secure Desktop before 3.6.6020 does not compare the timestamp of offered software to the timestamp of installed software, which allows remote attackers to force a version downgrade by using (1) ActiveX or (2) Java components to offer signed code that corresponds to an older software release, aka Bug ID CSCtx74235."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "20120620 Multiple Vulnerabilities in Cisco AnyConnect Secure Mobility Client",
              "refsource": "CISCO",
              "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120620-ac"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
    "assignerShortName": "cisco",
    "cveId": "CVE-2012-2495",
    "datePublished": "2012-06-20T20:00:00Z",
    "dateReserved": "2012-05-07T00:00:00Z",
    "dateUpdated": "2024-09-16T18:28:53.930Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:anyconnect_secure_mobility_client:3.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5F1A7236-46E3-487A-998B-4D72A5EEA004\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:secure_desktop:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"3.5.2008\", \"matchCriteriaId\": \"404A7711-C463-4471-A6BD-DD99B3795312\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:secure_desktop:3.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6EE6B79A-FD31-4637-BE22-EEADF63B94FF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:secure_desktop:3.1.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7F2F8EA5-8DEF-48D0-9E7F-6047D4AECC5C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:secure_desktop:3.1.1.27:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"59D841B0-3D1B-4F1C-87F1-D0355955E49C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:secure_desktop:3.1.1.33:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F13E414E-E56E-496E-A952-F93DCF1B1BDC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:secure_desktop:3.1.1.45:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"21F5DFB0-21F4-45F7-B4AF-000B24DEA596\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:secure_desktop:3.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0D7A8878-2E0F-4140-86DF-75999B47E4F5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:secure_desktop:3.2.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4932BA9E-4156-4445-93E9-7A9F1D81090B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:secure_desktop:3.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3497EB29-C406-44C1-AB28-0DDC4E79A9D9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:secure_desktop:3.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6C63D54D-6424-4767-9832-41E7F0B1D1E9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:secure_desktop:3.4.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F4D4CF6F-2F81-45B0-9B5B-C8D79E74D6F4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:secure_desktop:3.4.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AA0286A4-6011-41DF-B607-44CFBBFD437F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:secure_desktop:3.4.2048:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FE277431-4101-4C0F-91DB-A1C15C0344FF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:secure_desktop:3.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4142FB07-D5F0-4209-B0DE-67B768D7BDAC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:secure_desktop:3.5.841:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"85641AF5-7A5B-4146-9806-E055420DB3AD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:secure_desktop:3.5.1077:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7D5FC538-64F7-4F3D-9FAE-82D5015737DE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:secure_desktop:3.5.2001:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4F72D901-C62C-41A0-8D68-72CB9508E507\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"The HostScan downloader implementation in Cisco AnyConnect Secure Mobility Client 3.x before 3.0 MR8 and Cisco Secure Desktop before 3.6.6020 does not compare the timestamp of offered software to the timestamp of installed software, which allows remote attackers to force a version downgrade by using (1) ActiveX or (2) Java components to offer signed code that corresponds to an older software release, aka Bug ID CSCtx74235.\"}, {\"lang\": \"es\", \"value\": \"La implementaci\\u00f3n de HostScan en Cisco AnyConnect Secure Mobility Client v3.x antes de v3.0 MR8 y Cisco Secure Desktop antes de v3.6.6020 no compara la marca de tiempo del software ofrecido con la marca de tiempo del software instalado, lo que permite forzar una rebaja de la versi\\u00f3n a atacantes remotos mediante el uso de componentes (1) ActiveX o (2) Java para ofrecer c\\u00f3digo firmado que corresponde a una versi\\u00f3n anterior del software. Se trata de un prblema tambi\\u00e9n conocido como Bug ID CSCtx74235.\"}]",
      "id": "CVE-2012-2495",
      "lastModified": "2024-11-21T01:39:09.153",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:M/Au:N/C:N/I:P/A:N\", \"baseScore\": 4.3, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"NONE\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 8.6, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": true}]}",
      "published": "2012-06-20T20:55:02.590",
      "references": "[{\"url\": \"http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120620-ac\", \"source\": \"ykramarz@cisco.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120620-ac\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}]",
      "sourceIdentifier": "ykramarz@cisco.com",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-20\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2012-2495\",\"sourceIdentifier\":\"ykramarz@cisco.com\",\"published\":\"2012-06-20T20:55:02.590\",\"lastModified\":\"2024-11-21T01:39:09.153\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The HostScan downloader implementation in Cisco AnyConnect Secure Mobility Client 3.x before 3.0 MR8 and Cisco Secure Desktop before 3.6.6020 does not compare the timestamp of offered software to the timestamp of installed software, which allows remote attackers to force a version downgrade by using (1) ActiveX or (2) Java components to offer signed code that corresponds to an older software release, aka Bug ID CSCtx74235.\"},{\"lang\":\"es\",\"value\":\"La implementaci\u00f3n de HostScan en Cisco AnyConnect Secure Mobility Client v3.x antes de v3.0 MR8 y Cisco Secure Desktop antes de v3.6.6020 no compara la marca de tiempo del software ofrecido con la marca de tiempo del software instalado, lo que permite forzar una rebaja de la versi\u00f3n a atacantes remotos mediante el uso de componentes (1) ActiveX o (2) Java para ofrecer c\u00f3digo firmado que corresponde a una versi\u00f3n anterior del software. Se trata de un prblema tambi\u00e9n conocido como Bug ID CSCtx74235.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:N/I:P/A:N\",\"baseScore\":4.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-20\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:anyconnect_secure_mobility_client:3.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5F1A7236-46E3-487A-998B-4D72A5EEA004\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:secure_desktop:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"3.5.2008\",\"matchCriteriaId\":\"404A7711-C463-4471-A6BD-DD99B3795312\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:secure_desktop:3.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6EE6B79A-FD31-4637-BE22-EEADF63B94FF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:secure_desktop:3.1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7F2F8EA5-8DEF-48D0-9E7F-6047D4AECC5C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:secure_desktop:3.1.1.27:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"59D841B0-3D1B-4F1C-87F1-D0355955E49C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:secure_desktop:3.1.1.33:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F13E414E-E56E-496E-A952-F93DCF1B1BDC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:secure_desktop:3.1.1.45:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"21F5DFB0-21F4-45F7-B4AF-000B24DEA596\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:secure_desktop:3.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0D7A8878-2E0F-4140-86DF-75999B47E4F5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:secure_desktop:3.2.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4932BA9E-4156-4445-93E9-7A9F1D81090B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:secure_desktop:3.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3497EB29-C406-44C1-AB28-0DDC4E79A9D9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:secure_desktop:3.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6C63D54D-6424-4767-9832-41E7F0B1D1E9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:secure_desktop:3.4.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F4D4CF6F-2F81-45B0-9B5B-C8D79E74D6F4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:secure_desktop:3.4.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AA0286A4-6011-41DF-B607-44CFBBFD437F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:secure_desktop:3.4.2048:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FE277431-4101-4C0F-91DB-A1C15C0344FF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:secure_desktop:3.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4142FB07-D5F0-4209-B0DE-67B768D7BDAC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:secure_desktop:3.5.841:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"85641AF5-7A5B-4146-9806-E055420DB3AD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:secure_desktop:3.5.1077:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7D5FC538-64F7-4F3D-9FAE-82D5015737DE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:secure_desktop:3.5.2001:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4F72D901-C62C-41A0-8D68-72CB9508E507\"}]}]}],\"references\":[{\"url\":\"http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120620-ac\",\"source\":\"ykramarz@cisco.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120620-ac\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}"
  }
}

The HostScan downloader implementation in Cisco AnyConnect Secure Mobility Client 3.x before 3.0 MR8 and Cisco Secure Desktop before 3.6.6020 does not compare the timestamp of offered software to the timestamp of installed software, which allows remote attackers to force a version downgrade by using (1) ActiveX or (2) Java components to offer signed code that corresponds to an older software release, aka Bug ID CSCtx74235. This older version of the client software may contain vulnerabilities which can be exploited by the attacker to perform further attacks. These issues are tracked by Cisco Bug IDs CSCtw48681 and CSCtx74235. Cisco AnyConnect Secure Mobility is a secure enterprise mobility solution. The vulnerability stems from not comparing the software timestamp provided by the installed software timestamp. Also known as Bug ID CSCtx74235

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-201206-0087",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "secure desktop",
        "scope": "eq",
        "trust": 1.9,
        "vendor": "cisco",
        "version": "3.5.1077"
      },
      {
        "model": "secure desktop",
        "scope": "eq",
        "trust": 1.9,
        "vendor": "cisco",
        "version": "3.5.841"
      },
      {
        "model": "secure desktop",
        "scope": "eq",
        "trust": 1.9,
        "vendor": "cisco",
        "version": "3.1.1"
      },
      {
        "model": "secure desktop",
        "scope": "eq",
        "trust": 1.9,
        "vendor": "cisco",
        "version": "3.2"
      },
      {
        "model": "secure desktop",
        "scope": "eq",
        "trust": 1.9,
        "vendor": "cisco",
        "version": "3.1"
      },
      {
        "model": "secure desktop",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "3.2.1"
      },
      {
        "model": "secure desktop",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "3.5.2001"
      },
      {
        "model": "secure desktop",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "3.3"
      },
      {
        "model": "secure desktop",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "3.5"
      },
      {
        "model": "secure desktop",
        "scope": "eq",
        "trust": 1.3,
        "vendor": "cisco",
        "version": "3.4.2048"
      },
      {
        "model": "secure desktop",
        "scope": "eq",
        "trust": 1.3,
        "vendor": "cisco",
        "version": "3.1.1.45"
      },
      {
        "model": "secure desktop",
        "scope": "eq",
        "trust": 1.3,
        "vendor": "cisco",
        "version": "3.1.1.33"
      },
      {
        "model": "anyconnect secure mobility client",
        "scope": "eq",
        "trust": 1.3,
        "vendor": "cisco",
        "version": "3.0"
      },
      {
        "model": "secure desktop",
        "scope": "lte",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "3.5.2008"
      },
      {
        "model": "secure desktop",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "3.1.1.27"
      },
      {
        "model": "secure desktop",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "3.4.1"
      },
      {
        "model": "secure desktop",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "3.4"
      },
      {
        "model": "secure desktop",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "3.4.2"
      },
      {
        "model": "anyconnect secure mobility client",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "3.0 mr8"
      },
      {
        "model": "anyconnect secure mobility client",
        "scope": "lt",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "3.x"
      },
      {
        "model": "secure desktop",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "cisco",
        "version": "3.5.2008"
      },
      {
        "model": "anyconnect secure mobility client",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "3.0.629"
      },
      {
        "model": "anyconnect secure mobility client",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "2.5.3046"
      },
      {
        "model": "anyconnect secure mobility client",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "2.5.3041"
      },
      {
        "model": "anyconnect secure mobility client",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "2.5"
      },
      {
        "model": "anyconnect secure mobility client",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "2.3.254"
      },
      {
        "model": "anyconnect secure mobility client",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "2.3.185"
      },
      {
        "model": "anyconnect secure mobility client",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "2.3"
      }
    ],
    "sources": [
      {
        "db": "BID",
        "id": "54108"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2012-002812"
      },
      {
        "db": "NVD",
        "id": "CVE-2012-2495"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201206-375"
      }
    ]
  },
  "configurations": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/configurations#",
      "children": {
        "@container": "@list"
      },
      "cpe_match": {
        "@container": "@list"
      },
      "data": {
        "@container": "@list"
      },
      "nodes": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:3.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:secure_desktop:3.1.1.33:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:secure_desktop:3.4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:secure_desktop:3.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:secure_desktop:3.5.2001:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:secure_desktop:3.2.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:secure_desktop:3.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:secure_desktop:3.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:secure_desktop:3.5.841:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:secure_desktop:3.4.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:secure_desktop:3.4.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:secure_desktop:3.4.2048:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:secure_desktop:3.1.1.45:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:secure_desktop:3.1.1.27:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:secure_desktop:3.1.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:secure_desktop:3.5:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:secure_desktop:3.5.1077:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:secure_desktop:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "3.5.2008",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2012-2495"
      }
    ]
  },
  "credits": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/credits#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "gwslabs.com via Zero Day Initiative and Cisco",
    "sources": [
      {
        "db": "BID",
        "id": "54108"
      }
    ],
    "trust": 0.3
  },
  "cve": "CVE-2012-2495",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "acInsufInfo": false,
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "NVD",
            "availabilityImpact": "NONE",
            "baseScore": 4.3,
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 8.6,
            "impactScore": 2.9,
            "integrityImpact": "PARTIAL",
            "obtainAllPrivilege": false,
            "obtainOtherPrivilege": false,
            "obtainUserPrivilege": false,
            "severity": "MEDIUM",
            "trust": 1.0,
            "userInteractionRequired": true,
            "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
            "version": "2.0"
          },
          {
            "acInsufInfo": null,
            "accessComplexity": "Medium",
            "accessVector": "Network",
            "authentication": "None",
            "author": "NVD",
            "availabilityImpact": "None",
            "baseScore": 4.3,
            "confidentialityImpact": "None",
            "exploitabilityScore": null,
            "id": "CVE-2012-2495",
            "impactScore": null,
            "integrityImpact": "Partial",
            "obtainAllPrivilege": null,
            "obtainOtherPrivilege": null,
            "obtainUserPrivilege": null,
            "severity": "Medium",
            "trust": 0.8,
            "userInteractionRequired": null,
            "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
            "version": "2.0"
          },
          {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "VULHUB",
            "availabilityImpact": "NONE",
            "baseScore": 4.3,
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 8.6,
            "id": "VHN-55776",
            "impactScore": 2.9,
            "integrityImpact": "PARTIAL",
            "severity": "MEDIUM",
            "trust": 0.1,
            "vectorString": "AV:N/AC:M/AU:N/C:N/I:P/A:N",
            "version": "2.0"
          }
        ],
        "cvssV3": [],
        "severity": [
          {
            "author": "NVD",
            "id": "CVE-2012-2495",
            "trust": 1.8,
            "value": "MEDIUM"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-201206-375",
            "trust": 0.6,
            "value": "MEDIUM"
          },
          {
            "author": "VULHUB",
            "id": "VHN-55776",
            "trust": 0.1,
            "value": "MEDIUM"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-55776"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2012-002812"
      },
      {
        "db": "NVD",
        "id": "CVE-2012-2495"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201206-375"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "The HostScan downloader implementation in Cisco AnyConnect Secure Mobility Client 3.x before 3.0 MR8 and Cisco Secure Desktop before 3.6.6020 does not compare the timestamp of offered software to the timestamp of installed software, which allows remote attackers to force a version downgrade by using (1) ActiveX or (2) Java components to offer signed code that corresponds to an older software release, aka Bug ID CSCtx74235.  This older version of the client software may contain vulnerabilities  which can be exploited by the attacker to perform further attacks. \nThese issues are tracked by Cisco Bug IDs CSCtw48681 and CSCtx74235. Cisco AnyConnect Secure Mobility is a secure enterprise mobility solution. The vulnerability stems from not comparing the software timestamp provided by the installed software timestamp. Also known as Bug ID CSCtx74235",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2012-2495"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2012-002812"
      },
      {
        "db": "BID",
        "id": "54108"
      },
      {
        "db": "VULHUB",
        "id": "VHN-55776"
      }
    ],
    "trust": 1.98
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "NVD",
        "id": "CVE-2012-2495",
        "trust": 2.8
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2012-002812",
        "trust": 0.8
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201206-375",
        "trust": 0.7
      },
      {
        "db": "CISCO",
        "id": "20120620 MULTIPLE VULNERABILITIES IN CISCO ANYCONNECT SECURE MOBILITY CLIENT",
        "trust": 0.6
      },
      {
        "db": "NSFOCUS",
        "id": "19867",
        "trust": 0.6
      },
      {
        "db": "ZDI",
        "id": "ZDI-12-149",
        "trust": 0.3
      },
      {
        "db": "BID",
        "id": "54108",
        "trust": 0.3
      },
      {
        "db": "VULHUB",
        "id": "VHN-55776",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-55776"
      },
      {
        "db": "BID",
        "id": "54108"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2012-002812"
      },
      {
        "db": "NVD",
        "id": "CVE-2012-2495"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201206-375"
      }
    ]
  },
  "id": "VAR-201206-0087",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-55776"
      }
    ],
    "trust": 0.01
  },
  "last_update_date": "2023-12-18T12:22:01.649000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "cisco-sa-20120620-ac",
        "trust": 0.8,
        "url": "http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20120620-ac"
      },
      {
        "title": "26198",
        "trust": 0.8,
        "url": "http://tools.cisco.com/security/center/viewalert.x?alertid=26198"
      },
      {
        "title": "Update Rollup for ActiveX Kill Bits (2736233)",
        "trust": 0.8,
        "url": "http://technet.microsoft.com/en-us/security/advisory/2736233"
      },
      {
        "title": "Java SE Development Kit 7, Update 9 (JDK 7u9)",
        "trust": 0.8,
        "url": "http://www.oracle.com/technetwork/java/javase/7u9-relnotes-1863279.html"
      },
      {
        "title": "Java SE Development Kit 6, Update 37 (JDK 6u37)",
        "trust": 0.8,
        "url": "http://www.oracle.com/technetwork/java/javase/6u37-relnotes-1863283.html"
      },
      {
        "title": "cisco-sa-20120620-ac",
        "trust": 0.8,
        "url": "http://www.cisco.com/cisco/web/support/jp/111/1115/1115492_cisco-sa-20120620-ac-j.html"
      },
      {
        "title": "ActiveX \u306e Kill Bit \u66f4\u65b0\u30d7\u30ed\u30b0\u30e9\u30e0\u306e\u30ed\u30fc\u30eb\u30a2\u30c3\u30d7 (2736233)",
        "trust": 0.8,
        "url": "http://technet.microsoft.com/ja-jp/security/advisory/2736233"
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2012-002812"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "CWE-20",
        "trust": 1.9
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-55776"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2012-002812"
      },
      {
        "db": "NVD",
        "id": "CVE-2012-2495"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 2.0,
        "url": "http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20120620-ac"
      },
      {
        "trust": 0.8,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2012-2495"
      },
      {
        "trust": 0.8,
        "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2012-2495"
      },
      {
        "trust": 0.6,
        "url": "http://www.nsfocus.net/vulndb/19867"
      },
      {
        "trust": 0.3,
        "url": "http://www.cisco.com/"
      },
      {
        "trust": 0.3,
        "url": "http://technet.microsoft.com/en-us/security/advisory/2736233"
      },
      {
        "trust": 0.3,
        "url": "http://www.zerodayinitiative.com/advisories/zdi-12-149/"
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-55776"
      },
      {
        "db": "BID",
        "id": "54108"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2012-002812"
      },
      {
        "db": "NVD",
        "id": "CVE-2012-2495"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201206-375"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "VULHUB",
        "id": "VHN-55776"
      },
      {
        "db": "BID",
        "id": "54108"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2012-002812"
      },
      {
        "db": "NVD",
        "id": "CVE-2012-2495"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201206-375"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2012-06-20T00:00:00",
        "db": "VULHUB",
        "id": "VHN-55776"
      },
      {
        "date": "2012-06-20T00:00:00",
        "db": "BID",
        "id": "54108"
      },
      {
        "date": "2012-06-22T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2012-002812"
      },
      {
        "date": "2012-06-20T20:55:02.590000",
        "db": "NVD",
        "id": "CVE-2012-2495"
      },
      {
        "date": "2012-06-21T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201206-375"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2012-06-21T00:00:00",
        "db": "VULHUB",
        "id": "VHN-55776"
      },
      {
        "date": "2015-03-19T08:41:00",
        "db": "BID",
        "id": "54108"
      },
      {
        "date": "2012-12-14T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2012-002812"
      },
      {
        "date": "2012-06-21T04:00:00",
        "db": "NVD",
        "id": "CVE-2012-2495"
      },
      {
        "date": "2012-06-27T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201206-375"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "remote",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201206-375"
      }
    ],
    "trust": 0.6
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Cisco AnyConnect Secure Mobility Client and  Cisco Secure Desktop Vulnerabilities forced to downgrade",
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2012-002812"
      }
    ],
    "trust": 0.8
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "input validation",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201206-375"
      }
    ],
    "trust": 0.6
  }
}

gsd-2012-2495

Vulnerability from gsd

Modified

2023-12-13 01:20

Details

Aliases

CVE-2012-2495

Aliases

CVE-2012-2495

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2012-2495",
    "description": "The HostScan downloader implementation in Cisco AnyConnect Secure Mobility Client 3.x before 3.0 MR8 and Cisco Secure Desktop before 3.6.6020 does not compare the timestamp of offered software to the timestamp of installed software, which allows remote attackers to force a version downgrade by using (1) ActiveX or (2) Java components to offer signed code that corresponds to an older software release, aka Bug ID CSCtx74235.",
    "id": "GSD-2012-2495"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2012-2495"
      ],
      "details": "The HostScan downloader implementation in Cisco AnyConnect Secure Mobility Client 3.x before 3.0 MR8 and Cisco Secure Desktop before 3.6.6020 does not compare the timestamp of offered software to the timestamp of installed software, which allows remote attackers to force a version downgrade by using (1) ActiveX or (2) Java components to offer signed code that corresponds to an older software release, aka Bug ID CSCtx74235.",
      "id": "GSD-2012-2495",
      "modified": "2023-12-13T01:20:16.768571Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "psirt@cisco.com",
        "ID": "CVE-2012-2495",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "The HostScan downloader implementation in Cisco AnyConnect Secure Mobility Client 3.x before 3.0 MR8 and Cisco Secure Desktop before 3.6.6020 does not compare the timestamp of offered software to the timestamp of installed software, which allows remote attackers to force a version downgrade by using (1) ActiveX or (2) Java components to offer signed code that corresponds to an older software release, aka Bug ID CSCtx74235."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "20120620 Multiple Vulnerabilities in Cisco AnyConnect Secure Mobility Client",
            "refsource": "CISCO",
            "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120620-ac"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:3.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:secure_desktop:3.1.1.33:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:secure_desktop:3.4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:secure_desktop:3.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:secure_desktop:3.5.2001:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:secure_desktop:3.2.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:secure_desktop:3.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:secure_desktop:3.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:secure_desktop:3.5.841:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:secure_desktop:3.4.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:secure_desktop:3.4.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:secure_desktop:3.4.2048:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:secure_desktop:3.1.1.45:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:secure_desktop:3.1.1.27:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:secure_desktop:3.1.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:secure_desktop:3.5:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:secure_desktop:3.5.1077:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:secure_desktop:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "3.5.2008",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@cisco.com",
          "ID": "CVE-2012-2495"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "The HostScan downloader implementation in Cisco AnyConnect Secure Mobility Client 3.x before 3.0 MR8 and Cisco Secure Desktop before 3.6.6020 does not compare the timestamp of offered software to the timestamp of installed software, which allows remote attackers to force a version downgrade by using (1) ActiveX or (2) Java components to offer signed code that corresponds to an older software release, aka Bug ID CSCtx74235."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-20"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "20120620 Multiple Vulnerabilities in Cisco AnyConnect Secure Mobility Client",
              "refsource": "CISCO",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120620-ac"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "NONE",
            "baseScore": 4.3,
            "confidentialityImpact": "NONE",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
            "version": "2.0"
          },
          "exploitabilityScore": 8.6,
          "impactScore": 2.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": true
        }
      },
      "lastModifiedDate": "2012-06-21T04:00Z",
      "publishedDate": "2012-06-20T20:55Z"
    }
  }
}

ghsa-jp4v-v2ww-7m2h

Vulnerability from github

Published

2022-05-17 05:28

Modified

2022-05-17 05:28

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2012-2495"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-20"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2012-06-20T20:55:00Z",
    "severity": "MODERATE"
  },
  "details": "The HostScan downloader implementation in Cisco AnyConnect Secure Mobility Client 3.x before 3.0 MR8 and Cisco Secure Desktop before 3.6.6020 does not compare the timestamp of offered software to the timestamp of installed software, which allows remote attackers to force a version downgrade by using (1) ActiveX or (2) Java components to offer signed code that corresponds to an older software release, aka Bug ID CSCtx74235.",
  "id": "GHSA-jp4v-v2ww-7m2h",
  "modified": "2022-05-17T05:28:31Z",
  "published": "2022-05-17T05:28:31Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-2495"
    },
    {
      "type": "WEB",
      "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120620-ac"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

fkie_cve-2012-2495

Vulnerability from fkie_nvd

Published

2012-06-20 20:55

Modified

2024-11-21 01:39

Severity ?

Summary

References

▼	URL	Tags
	psirt@cisco.com	http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120620-ac	Vendor Advisory
	af854a3a-2127-422b-91ae-364da2661108	http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120620-ac	Vendor Advisory

Impacted products

Vendor	Product	Version
cisco	anyconnect_secure_mobility_client	3.0
cisco	secure_desktop	*
cisco	secure_desktop	3.1
cisco	secure_desktop	3.1.1
cisco	secure_desktop	3.1.1.27
cisco	secure_desktop	3.1.1.33
cisco	secure_desktop	3.1.1.45
cisco	secure_desktop	3.2
cisco	secure_desktop	3.2.1
cisco	secure_desktop	3.3
cisco	secure_desktop	3.4
cisco	secure_desktop	3.4.1
cisco	secure_desktop	3.4.2
cisco	secure_desktop	3.4.2048
cisco	secure_desktop	3.5
cisco	secure_desktop	3.5.841
cisco	secure_desktop	3.5.1077
cisco	secure_desktop	3.5.2001

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:3.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "5F1A7236-46E3-487A-998B-4D72A5EEA004",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:secure_desktop:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "404A7711-C463-4471-A6BD-DD99B3795312",
              "versionEndIncluding": "3.5.2008",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:secure_desktop:3.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "6EE6B79A-FD31-4637-BE22-EEADF63B94FF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:secure_desktop:3.1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "7F2F8EA5-8DEF-48D0-9E7F-6047D4AECC5C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:secure_desktop:3.1.1.27:*:*:*:*:*:*:*",
              "matchCriteriaId": "59D841B0-3D1B-4F1C-87F1-D0355955E49C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:secure_desktop:3.1.1.33:*:*:*:*:*:*:*",
              "matchCriteriaId": "F13E414E-E56E-496E-A952-F93DCF1B1BDC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:secure_desktop:3.1.1.45:*:*:*:*:*:*:*",
              "matchCriteriaId": "21F5DFB0-21F4-45F7-B4AF-000B24DEA596",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:secure_desktop:3.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "0D7A8878-2E0F-4140-86DF-75999B47E4F5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:secure_desktop:3.2.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "4932BA9E-4156-4445-93E9-7A9F1D81090B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:secure_desktop:3.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "3497EB29-C406-44C1-AB28-0DDC4E79A9D9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:secure_desktop:3.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "6C63D54D-6424-4767-9832-41E7F0B1D1E9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:secure_desktop:3.4.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "F4D4CF6F-2F81-45B0-9B5B-C8D79E74D6F4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:secure_desktop:3.4.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "AA0286A4-6011-41DF-B607-44CFBBFD437F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:secure_desktop:3.4.2048:*:*:*:*:*:*:*",
              "matchCriteriaId": "FE277431-4101-4C0F-91DB-A1C15C0344FF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:secure_desktop:3.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "4142FB07-D5F0-4209-B0DE-67B768D7BDAC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:secure_desktop:3.5.841:*:*:*:*:*:*:*",
              "matchCriteriaId": "85641AF5-7A5B-4146-9806-E055420DB3AD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:secure_desktop:3.5.1077:*:*:*:*:*:*:*",
              "matchCriteriaId": "7D5FC538-64F7-4F3D-9FAE-82D5015737DE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:secure_desktop:3.5.2001:*:*:*:*:*:*:*",
              "matchCriteriaId": "4F72D901-C62C-41A0-8D68-72CB9508E507",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "The HostScan downloader implementation in Cisco AnyConnect Secure Mobility Client 3.x before 3.0 MR8 and Cisco Secure Desktop before 3.6.6020 does not compare the timestamp of offered software to the timestamp of installed software, which allows remote attackers to force a version downgrade by using (1) ActiveX or (2) Java components to offer signed code that corresponds to an older software release, aka Bug ID CSCtx74235."
    },
    {
      "lang": "es",
      "value": "La implementaci\u00f3n de HostScan en Cisco AnyConnect Secure Mobility Client v3.x antes de v3.0 MR8 y Cisco Secure Desktop antes de v3.6.6020 no compara la marca de tiempo del software ofrecido con la marca de tiempo del software instalado, lo que permite forzar una rebaja de la versi\u00f3n a atacantes remotos mediante el uso de componentes (1) ActiveX o (2) Java para ofrecer c\u00f3digo firmado que corresponde a una versi\u00f3n anterior del software. Se trata de un prblema tambi\u00e9n conocido como Bug ID CSCtx74235."
    }
  ],
  "id": "CVE-2012-2495",
  "lastModified": "2024-11-21T01:39:09.153",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 4.3,
          "confidentialityImpact": "NONE",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": true
      }
    ]
  },
  "published": "2012-06-20T20:55:02.590",
  "references": [
    {
      "source": "psirt@cisco.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120620-ac"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120620-ac"
    }
  ],
  "sourceIdentifier": "psirt@cisco.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-20"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

cve-2012-2495

Vulnerability from cvelistv5

var-201206-0087

Vulnerability from variot

gsd-2012-2495

Vulnerability from gsd

ghsa-jp4v-v2ww-7m2h

Vulnerability from github

fkie_cve-2012-2495

Vulnerability from fkie_nvd

Tags

Sightings

Nomenclature