SETUP CISCO ANYCONNECT MAC OS ACTION SKIP INSTALL
The workarounds offered by Cisco were to either install an ASA software update or to make registry changes that disable the ActiveX control – that is, to set the kill bit for the control. However, the impact of successful exploitation of this vulnerability is to the endpoint system only and does not compromise Cisco ASA devices. The affected ActiveX control is distributed to endpoint systems by Cisco ASA. A remote, unauthenticated attacker who could convince a user to connect to a malicious web page could exploit this issue to execute arbitrary code on the affected machine with the privileges of the web browser. Microsoft Windows-based systems that are running Internet Explorer or another browser that supports Microsoft ActiveX technology may be affected if the system has ever connected to a device that is running the Cisco Clientless VPN solution.
The Cisco Clientless VPN solution as deployed by Cisco ASA 5500 Series Adaptive Security Appliances (Cisco ASA) uses an ActiveX control on client systems to perform port forwarding operations.
Oh great.īack in March 2012 a vulnerability was publicized for the Cisco An圜onnect ActiveX control. When my system came back up I noticed that I could no longer launch my Cisco An圜onnect VPN client from Internet Explorer – ActiveX was failing. Last night I went to shut down my Windows 7 64-bit computer and agreed to the “I nstall updates and shut down” option.