CVE-2012-3088

Name of the Vulnerable Software and Affected Versions Cisco AnyConnect Secure Mobility Client versions 3.1.x before 3.1.00495 Cisco AnyConnect Secure Mobility Client version 3.2.x

Description The issue allows remote attackers to have an unspecified impact via a crafted HTTP request, as the software does not check whether the request originally contains ScanSafe headers.

Recommendations For Cisco AnyConnect Secure Mobility Client versions 3.1.x before 3.1.00495, update to version 3.1.00495 or later. For Cisco AnyConnect Secure Mobility Client version 3.2.x, at the moment, there is no information about a newer version that contains a fix for this issue.