Cisco Secure Desktop (CSD) Arbitrary Command Execution Vulnerability

Cisco Secure Desktop CSD is a secure desktop product from Cisco that reduces the risk of remote users logging off and cookies, browser history, temporary files, and downloads being left on the system after the SSL VPN session times out with encryption. An arbitrary command execution vulnerability...

PT-2010-2204 · Cisco · Cisco Secure Desktop +1

Name of the Vulnerable Software and Affected Versions: Cisco Secure Desktop versions prior to 3.5 Cisco ASA appliance versions prior to 8.21, 8.12.7, and 8.05 Description: The issue allows remote attackers to inject arbitrary web script or HTML via a crafted POST parameter. This is due to imprope...

PT-2006-6112 · Cisco · Cisco Secure Desktop

Name of the Vulnerable Software and Affected Versions: Cisco Secure Desktop CSD affected versions not specified Description: The issue allows local users to potentially read certain memory pages that were written during another user's SSL VPN session, due to the ClearPageFileAtShutdown registry...