CVE-2013-1172

{"id": "CVE-2013-1172", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.6, "accessVector": "LOCAL", "vectorString": "AV:L/AC:M/Au:S/C:C/I:C/A:C", "authentication": "SINGLE", "integrityImpact": "COMPLETE", "accessComplexity": "MEDIUM", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 2.7, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2013-04-11T10:55:02.090", "references": [{"url": "http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-1172", "tags": ["Vendor Advisory"], "source": "ykramarz@cisco.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-20"}]}], "descriptions": [{"lang": "en", "value": "The Cisco Security Service in Cisco AnyConnect Secure Mobility Client (aka AnyConnect VPN Client) does not properly verify files, which allows local users to gain privileges via unspecified vectors, aka Bug ID CSCud14153."}, {"lang": "es", "value": "El Servicio de Seguridad de Cisco en Cisco AnyConnect Secure Mobility Client (tambi\u00e9n conocido como AnyConnect VPN Client) no verificar correctamente los archivos, lo que permite a usuarios locales conseguir privilegios a trav\u00e9s de vectores no especificados, tambi\u00e9n conocido como Bug ID CSCud14153."}], "lastModified": "2013-04-11T10:55:02.090", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8A1CB222-036F-4598-8E55-D367846FF04E"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6B522088-2084-491B-98F0-3E3CCD88131F"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DA179B71-AC81-4587-8FB1-0466B2550975"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "210B66BB-4E2C-4D9E-BFBB-69916A42287C"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.2.128:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B77EB2C9-BACE-46EA-AA72-FF1C7EB1A5F4"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.2.133:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "06527370-E73A-40FF-8E02-E0337536C7C1"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.2.136:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A617295C-F518-4BC7-8442-E476448D8F01"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.2.140:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E71A1D6B-8E87-4E3A-A1AE-DE44C2C348F9"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B8AD6158-17AB-443D-8EC1-5FDE5852CAEC"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.3.185:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0BBF395D-9E90-44C1-8E99-3631FFF24487"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.3.254:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E874C1CB-5F13-45DE-98EF-48C9DCC0DA80"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.3.2016:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "184A5DAA-9BDB-4C2D-80DC-E2E21356676A"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BB04F55C-D373-42FF-8CEE-88762BA1BD62"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.4:*:*:*:*:symbian_os:*:*", "vulnerable": true, "matchCriteriaId": "CECD4EF3-0866-4EF1-82B5-9963738A7478"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.4.0202:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5B1E5D16-BD4E-417C-851B-AEC74D1F84FC"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.4.1012:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8B9822AE-2ACE-424A-BB03-4457923E812E"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.4.4004:*:*:*:*:iphone_os:*:*", "vulnerable": true, "matchCriteriaId": "B892253B-769B-4DF9-B9E3-B65B411E7A2F"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.4.4014:*:*:*:*:iphone_os:*:*", "vulnerable": true, "matchCriteriaId": "BD7AA5BB-13E7-4A69-BB68-33CEC22CD66F"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.4.5004:*:*:*:*:symbian_os:*:*", "vulnerable": true, "matchCriteriaId": "1F6D108D-EB11-4AC0-9E94-C8A2D36CE3F6"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.4.7030:*:*:*:*:android:*:*", "vulnerable": true, "matchCriteriaId": "CF2ADCC5-62A8-40C3-875F-8DB53474E60E"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.4.7073:*:*:*:*:android:*:*", "vulnerable": true, "matchCriteriaId": "9ABA89DD-1CDC-46B3-A276-980BC0D9A4EC"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D85B4988-85C9-4E28-B526-862B6EB8A436"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.5.0217:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2EF2B696-85BA-492E-AB95-A1A7427429CD"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.5.1025:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "818C7378-6587-4F08-A8F1-C2E2D3DFFE0C"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.5.2001:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F2646BB0-DC7B-47E9-9EF1-9E70F328DE0B"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.5.2006:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C41B8BA4-3242-464D-A9E0-15018C8CB495"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.5.2010:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D713E198-7C64-4D7C-9DE9-C84FBE26B571"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.5.2011:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AE3B606D-1E0E-4276-BFD4-31D6BD96FE1C"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.5.2014:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B3A37930-E737-46E9-BD83-99D72C31A551"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.5.2017:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "93A65C87-E948-4BFF-AFE5-3180701AFDA3"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.5.2018:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "39FDA0C8-8315-4899-B0C5-DE234784E50D"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.5.2019:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6C3D6B5A-A836-490E-B295-DE9832EC2DA3"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.5.3041:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7D7D1894-0E58-43BA-9A40-82E3D8648FF7"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.5.3046:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "111D94E9-AC3C-41E8-8F47-F5A72B27DE9C"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.5.3051:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E78742CF-1043-41BC-9789-8A8FA9460FF5"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.5.3054:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CA3903F0-39C8-43B4-A117-812583EEE94F"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.5.3055:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CED47F1A-7A16-484C-A71C-E5FC739A3AB4"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.5.5112:*:*:*:*:iphone_os:*:*", "vulnerable": true, "matchCriteriaId": "FE3B3EE1-825A-498D-B7CF-AD581AD52F27"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.5.5116:*:*:*:*:android:*:*", "vulnerable": true, "matchCriteriaId": "3C97B8BD-165F-4A5B-BB7F-95924DBB1E35"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.5.5118:*:*:*:*:android:*:*", "vulnerable": true, "matchCriteriaId": "175C28F9-D982-4893-9860-1923B554A292"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.5.5125:*:*:*:*:android:*:*", "vulnerable": true, "matchCriteriaId": "A24DFA2C-CFC5-4B46-BA40-4CCB5D163786"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.5.5130:*:*:*:*:iphone_os:*:*", "vulnerable": true, "matchCriteriaId": "84EED2C0-D44F-4A12-B596-74B5FEB8961C"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.5.5131:*:*:*:*:android:*:*", "vulnerable": true, "matchCriteriaId": "31C51F6F-BADC-4FBF-8D33-BA5C6DE647C7"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:2.5.6005:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8A74CA27-8F2B-43AF-8505-310E0B97F3D2"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:3.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5F1A7236-46E3-487A-998B-4D72A5EEA004"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:3.0:*:*:*:*:*:x64:*", "vulnerable": true, "matchCriteriaId": "7A2091E5-20BF-4F60-A02B-E51BD936113F"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:3.0.0629:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9BA1D619-5FC6-4F45-B35A-1C029729146A"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:3.0.1047:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4279AC14-F659-4592-976E-E81B528EF6AE"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:3.0.2052:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AF0D59FA-777E-4017-972E-54B4E9A39A1E"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:3.0.3050:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1FA8AE9E-221C-4117-B9B6-842AC529B313"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:3.0.3054:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C9DC7395-6976-4FB2-904E-0E7EA5EFF44B"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:3.0.4235:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "55BB9930-B838-4326-AC8B-9FF9690BF570"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:3.0.5075:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BC719878-4AC0-4EDF-BA63-3355078DE646"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:3.0.5080:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5D05F500-75AB-41DA-8492-5AFD7D0BA475"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:3.0.07059:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "45EF20F7-1CAA-41F9-A937-B4FDC03BDCEC"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:3.0.08057:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "899F95BB-6AE0-4319-AB3C-260155C4B65A"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:3.0.08057:*:*:*:*:*:x64:*", "vulnerable": true, "matchCriteriaId": "2F723EAC-336E-49BB-8A65-84FF4E9055E4"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:3.0.08066:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D4F49B78-352C-4165-AAB0-CC55886F9D43"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:3.1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7CFE1E12-CAEE-4CB5-8969-D6F92451F69B"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:3.1.00495:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "277996FD-C2B9-4C96-B3AA-FCF1B50EEE81"}, {"criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:3.2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B18B5AB9-83E9-444E-94D1-EB10475D66E0"}], "operator": "OR"}]}], "sourceIdentifier": "ykramarz@cisco.com"}