CVE-2012-0358 Information

Description

Buffer overflow in the Cisco Port Forwarder ActiveX control in cscopf.ocx as distributed through the Clientless VPN feature on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 7.0 through 7.2 before 7.2(5.6) 8.0 before 8.0(5.26) 8.1 before 8.1(2.53) 8.2 before 8.2(5.18) 8.3 before 8.3(2.28) 8.2 before 8.4(2.16) and 8.6 before 8.6(1.1) allows remote attackers to execute arbitrary code via unspecified vectors aka Bug ID CSCtr00165.

Reference

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120314-asaclient http://www.kb.cert.org/vuls/id/339177 http://www.securitytracker.com/id?1026799 https://exchange.xforce.ibmcloud.com/vulnerabilities/74027