Cisco patches critical security vulnerability in Secure Desktop

By /

If your organization uses Cisco’s Secure Desktop, which is a component of the Cisco SSL VPN solution, you need to be aware of a critical security vulnerability that, if exploited, could result in a complete compromise of the affected system. The problem is a Cisco-signed ActiveX control that could be invoked by malicious code on a web page to download an malicious executable.

Cisco has issued a patch for the vulnerability, which affects versions prior to 3.5.841. Here’s the advisory with instructions on how to get the update:

http://www.cisco.com/en/US/products/products_security_advisory09186a0080b25d01.shtml

About The Author

Debra Littlejohn Shinder is a technology and security analyst and author specializing in identity, security and cybercrime, utilizing her past experience as a police officer and police academy/criminal justice instructor. She has written numerous books and articles for web and print publications and has been awarded the Microsoft MVP designation for fourteen years in a row.

Read Next

Leave a Comment

Your email address will not be published. Required fields are marked *

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Scroll to Top