CVE-2012-2499

Name of the Vulnerable Software and Affected Versions Cisco AnyConnect Secure Mobility Client version 3.0 before 3.0.08057

Description The issue is related to the IPsec implementation, which fails to verify the certificate name in an X.509 certificate. This allows man-in-the-middle attackers to spoof servers by using a crafted certificate.

Recommendations For Cisco AnyConnect Secure Mobility Client version 3.0 before 3.0.08057, update to version 3.0.08057 or later to resolve the issue. As a temporary workaround, consider verifying server certificates manually to minimize the risk of exploitation.