PT-2006-3599 · Cisco · Cisco Vpn Client For Windows

Published

2006-05-31

Updated

2017-07-20

CVE-2006-2679

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Cisco VPN Client for Windows versions 4.8.00.* and earlier, except for version 4.7.00.0533

Description The issue allows local authenticated, interactive users to gain privileges. This could be related to the privileges of dialog boxes in the VPN Client for Windows Graphical User Interface.

Recommendations For versions 4.8.00.* and earlier, except for version 4.7.00.0533, consider restricting access to the VPN Client for Windows Graphical User Interface to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2006-2679

Affected Products

Cisco Vpn Client For Windows

PT-2006-3599 · Cisco · Cisco Vpn Client For Windows

CVE-2006-2679

Related Identifiers

Affected Products

References · 8