Lucene search

[email protected]NVD:CVE-2017-3813

HistoryFeb 09, 2017 - 5:59 p.m.

CVE-2017-3813

2017-02-0917:59:00

CWE-264

CWE-862

[email protected]

web.nvd.nist.gov

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

7.6

Confidence

High

EPSS

0.001

Percentile

38.6%

JSON

A vulnerability in the Start Before Logon (SBL) module of Cisco AnyConnect Secure Mobility Client Software for Windows could allow an unauthenticated, local attacker to open Internet Explorer with the privileges of the SYSTEM user. The vulnerability is due to insufficient implementation of the access controls. An attacker could exploit this vulnerability by opening the Internet Explorer browser. An exploit could allow the attacker to use Internet Explorer with the privileges of the SYSTEM user. This may allow the attacker to execute privileged commands on the targeted system. This vulnerability affects versions prior to released versions 4.4.00243 and later and 4.3.05017 and later. Cisco Bug IDs: CSCvc43976.

Affected configurations

Nvd

Node

ciscoanyconnect_secure_mobility_clientMatch4.0.00048

ciscoanyconnect_secure_mobility_clientMatch4.0.00051

ciscoanyconnect_secure_mobility_clientMatch4.0.00052

ciscoanyconnect_secure_mobility_clientMatch4.0.00057

ciscoanyconnect_secure_mobility_clientMatch4.0.00061

ciscoanyconnect_secure_mobility_clientMatch4.1.00028

ciscoanyconnect_secure_mobility_clientMatch4.1.02011

ciscoanyconnect_secure_mobility_clientMatch4.1.04011

ciscoanyconnect_secure_mobility_clientMatch4.1.06013

ciscoanyconnect_secure_mobility_clientMatch4.1.06020

ciscoanyconnect_secure_mobility_clientMatch4.1.08005

ciscoanyconnect_secure_mobility_clientMatch4.2.00096

ciscoanyconnect_secure_mobility_clientMatch4.2.01022

ciscoanyconnect_secure_mobility_clientMatch4.2.01035

ciscoanyconnect_secure_mobility_clientMatch4.2.02075

ciscoanyconnect_secure_mobility_clientMatch4.2.03013

ciscoanyconnect_secure_mobility_clientMatch4.2.04018

ciscoanyconnect_secure_mobility_clientMatch4.2.04039

ciscoanyconnect_secure_mobility_clientMatch4.2.05015

ciscoanyconnect_secure_mobility_clientMatch4.2.06014

ciscoanyconnect_secure_mobility_clientMatch4.3.00748

ciscoanyconnect_secure_mobility_clientMatch4.3.01095

ciscoanyconnect_secure_mobility_clientMatch4.3.02039

ciscoanyconnect_secure_mobility_clientMatch4.3.03086

ciscoanyconnect_secure_mobility_clientMatch4.3.04027

References

www.securityfocus.com/bid/96145

www.securitytracker.com/id/1037796

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170208-anyconnect

www.exploit-db.com/exploits/41476/

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

7.6

Confidence

High

EPSS

0.001

Percentile

38.6%

JSON

Related for NVD:CVE-2017-3813

cvelist1 packetstorm1 prion1 zdt1 cisco1 nessus1 exploitpack1 seebug1 cve1 exploitdb1