The Web Install ActiveX control (CSDWebInstaller) in Cisco Secure Desktop (CSD) before 3.5.841 does not properly verify the signatures of downloaded programs, which allows remote attackers to force the download and execution of arbitrary files via a crafted web page, aka Bug ID CSCta25876.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: cisco
Published: 2010-04-15T17:00:00
Updated: 2017-08-16T14:57:01
Reserved: 2010-02-10T00:00:00
Link: CVE-2010-0589
JSON object: View
NVD Information
Status : Modified
Published: 2010-04-15T17:30:00.523
Modified: 2017-08-17T01:32:02.523
Link: CVE-2010-0589
JSON object: View
Redhat Information
No data.
CWE