Lumension® Endpoint Intelligence Center

Intelligence Center » News Archive » Users warned of serious flaw in deprecated Cisco Secure Desktop feature

Users warned of serious flaw in deprecated Cisco Secure Desktop feature

2015/04/16

Securityweek - (International) Cisco released a security advisory warning of a high severity command execution vulnerability affecting Cisco-signed Java Archive (JAR) executables in Cache Cleaner for Cisco Secure Desktop that could allow an unauthenticated attacker to run arbitrary commands on affected systems. The company deprecated the Cache Cleaner product over 2 years ago and advised users to transition to the Cisco Host Scan standalone package.

Source: http://www.securityweek.com/users-warned-serious-flaw-deprecated-cisco-secure-desktop-feature

Note: This news synopsis is taken from the DHS Daily Open Source Infrastructure Report, a daily [Monday through Friday, except US Federal holidays] summary of open-source published information concerning significant critical infrastructure issues; a 10-day archive of the DOSIR can be found at: http://www.dhs.gov/dhs-daily-open-source-infrastructure-report.


Last Updated: 27 May 2016 10:24:07