CVE-2012-0358

Name of the Vulnerable Software and Affected Versions Cisco ASA versions 7.0 through 7.2 before 7.2(5.6) Cisco ASA versions 8.0 before 8.0(5.26) Cisco ASA versions 8.1 before 8.1(2.53) Cisco ASA versions 8.2 before 8.2(5.18) Cisco ASA versions 8.3 before 8.3(2.28) Cisco ASA versions 8.4 before 8.4(2.16) Cisco ASA versions 8.6 before 8.6(1.1)

Description The issue is related to a buffer overflow in the Cisco Port Forwarder ActiveX control, which allows remote attackers to execute arbitrary code via unspecified vectors. This control is used by the Cisco Clientless VPN solution on Cisco ASA 5500 Series Adaptive Security Appliances. Microsoft Windows-based systems running Internet Explorer or another browser that supports Microsoft ActiveX technology may be affected if they have ever connected to a device running the Cisco Clientless VPN solution. A remote, unauthenticated attacker could exploit this issue by convincing a user to connect to a malicious web page, allowing the attacker to execute arbitrary code on the affected machine with the privileges of the web browser.

Recommendations For Cisco ASA versions 7.0 through 7.2 before 7.2(5.6), update to version 7.2(5.6) or later. For Cisco ASA versions 8.0 before 8.0(5.26), update to version 8.0(5.26) or later. For Cisco ASA versions 8.1 before 8.1(2.53), update to version 8.1(2.53) or later. For Cisco ASA versions 8.2 before 8.2(5.18), update to version 8.2(5.18) or later. For Cisco ASA versions 8.3 before 8.3(2.28), update to version 8.3(2.28) or later. For Cisco ASA versions 8.4 before 8.4(2.16), update to version 8.4(2.16) or later. For Cisco ASA versions 8.6 before 8.6(1.1), update to version 8.6(1.1) or later. As a temporary workaround, consider disabling the ActiveX control cscopf.ocx until a patch is available. Restrict access to the Cisco Clientless VPN solution to minimize the risk of exploitation. Avoid using Internet Explorer or other browsers that support Microsoft ActiveX technology to connect to devices running the Cisco Clientless VPN solution until the issue is resolved.