The vulnerability exists because there is no mechanism for the ASA or FTD Software to detect that the authentication request originates from the An圜onnect client directly. The authentication would need to be done by an unsuspecting third party, aka Session Fixation.
Cisco has not released software updates that address this vulnerability.Ī vulnerability in the implementation of Security Assertion Markup Language (SAML) Single Sign-On (SSO) authentication for Cisco An圜onnect Secure Mobility Client for Desktop Platforms, Cisco Adaptive Security Appliance (ASA) Software, and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to establish an authenticated An圜onnect session through an affected device running ASA or FTD Software. To exploit this vulnerability, the attacker would also need valid user credentials on the system upon which the An圜onnect client is being run. In order to successfully exploit this vulnerability, there must be an ongoing An圜onnect session by the targeted user at the time of the attack. This script would execute with the privileges of the targeted An圜onnect user. A successful exploit could allow an attacker to cause the targeted An圜onnect user to execute a script. An attacker could exploit this vulnerability by sending crafted IPC messages to the An圜onnect client IPC listener.
The vulnerability is due to a lack of authentication to the IPC listener. A vulnerability in the interprocess communication (IPC) channel of Cisco An圜onnect Secure Mobility Client Software could allow an authenticated, local attacker to cause a targeted An圜onnect user to execute a malicious script.
0 kommentar(er)
