The Cisco Secure Desktop contains a vulnerable ActiveX control that could allow an attacker to execute arbitrary code with the privileges of the user who is currently logged into the affected system. A successful exploit could result in a complete compromise of a vulnerable system, according to a warning from the networking vendor. The issue affects Cisco Secure desktop versions prior to 3.5.841. The company issued a patch alongside a warning that a successful exploitation of this vulnerability could lead to a complete compromise of the. affected system
Source: https://threatpost.com/cisco-plugs-critical-secure-desktop-activex-hole-041610/73841/