The Cisco AMP For Endpoints application allows an authenticated, local malicious user to access a static key value stored in the local application software. The vulnerability is due to the use of a static key value stored in the application used to encrypt the connector protection password. An attacker could exploit this vulnerability by gaining local, administrative access to a Windows host and stopping the Cisco AMP for Endpoints service. Cisco Bug IDs: CSCvg42904.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
cisco advanced malware protection 3.1\\(10\\) |
||
cisco advanced malware protection 4.1\\(4\\) |
||
cisco advanced malware protection 4.2\\(1\\) |
||
cisco advanced malware protection 5.0\\(1\\) |
||
cisco advanced malware protection 5.0\\(5\\) |
||
cisco advanced malware protection 5.1\\(13\\) |
||
cisco advanced malware protection 5.1\\(5\\) |
||
cisco advanced malware protection 4.0\\(0\\) |
||
cisco advanced malware protection 4.0\\(1\\) |
||
cisco advanced malware protection 4.0\\(2\\) |
||
cisco advanced malware protection 4.1\\(0\\) |
||
cisco advanced malware protection 4.1\\(1\\) |
||
cisco advanced malware protection 5.0\\(7\\) |
||
cisco advanced malware protection 5.0\\(9\\) |
||
cisco advanced malware protection 5.1\\(1\\) |
||
cisco advanced malware protection 5.1\\(11\\) |
||
cisco advanced malware protection 4.3\\(1\\) |
||
cisco advanced malware protection 4.4\\(0\\) |
||
cisco advanced malware protection 4.4\\(1\\) |
||
cisco advanced malware protection 4.4\\(2\\) |
||
cisco advanced malware protection 5.1\\(9\\) |
||
cisco advanced malware protection 6.0\\(1\\) |
||
cisco advanced malware protection 3.1\\(15\\) |
||
cisco advanced malware protection 4.2\\(0\\) |
||
cisco advanced malware protection 4.3\\(0\\) |
||
cisco advanced malware protection 4.4\\(4\\) |
||
cisco advanced malware protection 5.0\\(3\\) |
||
cisco advanced malware protection 5.1\\(3\\) |
||
cisco advanced malware protection 5.1\\(7\\) |
Vulmon