← back
CVE-2011-0926

CVE-2011-0926

EPSS 6.8%
A certain ActiveX control in CSDWebInstaller.ocx in Cisco Secure Desktop (CSD) does not properly verify the signature of an unspecified downloaded program, which allows remote attackers to execute arbitrary code by spoofing the CSD installation process, a different vulnerability than CVE-2010-0589.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://securityreason.com/securityalert/8105https://exchange.xforce.ibmcloud.com/vulnerabilities/65755http://www.securityfocus.com/archive/1/516647/100/0/threadedhttp://www.securityfocus.com/bid/46536http://www.securitytracker.com/id?1025118http://www.vupen.com/english/advisories/2011/0513http://www.zerodayinitiative.com/advisories/ZDI-11-091/