CVE-2013-1173

high

Description

Heap-based buffer overflow in ciscod.exe in the Cisco Security Service in Cisco AnyConnect Secure Mobility Client (aka AnyConnect VPN Client) allows local users to gain privileges via unspecified vectors, aka Bug ID CSCud14143.

References

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-1173

Details

Source: Mitre, NVD

Published: 2013-04-11

Updated: 2013-04-11

Risk Information

CVSS v2

Base Score: 6.6

Vector: CVSS2#AV:L/AC:M/Au:S/C:C/I:C/A:C

Severity: Medium

CVSS v3

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Severity: High