1. Home
  2. CVE Database
  3. CVE-2013-1173
MEDIUM · 6.6

CVE-2013-1173

Heap-based buffer overflow in ciscod.exe in the Cisco Security Service in Cisco AnyConnect Secure Mobility Client (aka AnyConnect VPN Client) allows local users to gain privileges via unspecified vect...

Vulnerability Description

Heap-based buffer overflow in ciscod.exe in the Cisco Security Service in Cisco AnyConnect Secure Mobility Client (aka AnyConnect VPN Client) allows local users to gain privileges via unspecified vectors, aka Bug ID CSCud14143.

CVSS Score

6.6

MEDIUM

AV:L/AC:M/Au:S/C:C/I:C/A:C
Confidentiality
COMPLETE
Integrity
COMPLETE
Availability
COMPLETE

Affected Products

VendorProductVersions
CiscoAnyconnect Secure Mobility Client-

Related Weaknesses (CWE)

CWE-119

References

FAQ

What is CVE-2013-1173?

CVE-2013-1173 is a vulnerability with a CVSS score of 6.6 (MEDIUM). Heap-based buffer overflow in ciscod.exe in the Cisco Security Service in Cisco AnyConnect Secure Mobility Client (aka AnyConnect VPN Client) allows local users to gain privileges via unspecified vect...

How severe is CVE-2013-1173?

CVE-2013-1173 has been rated MEDIUM with a CVSS base score of 6.6/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2013-1173?

Check the references section above for vendor advisories and patch information. Affected products include: Cisco Anyconnect Secure Mobility Client.