3 matches found
The vulnerability of Cisco VPN Client software allows a malicious individual to increase their privileges.
The vulnerability in dne2000.sys of Citrix Deterministic Network Enhancer for Cisco VPN Client, Blue Coat WinProxy, SafeNet SoftRemote, and HighAssurance Remote allows local users to elevate their privileges by using a specially crafted request called DNEIOCTL DeviceIoControl to the \.\DNE device...
CVE-2002-1108
Cisco Virtual Private Network VPN Client software 2.x.x, and 3.x before 3.6Rel, when configured with all tunnel mode, can be forced into acknowledging a TCP packet from outside the tunnel...
CVE-2002-1106
Cisco Virtual Private Network VPN Client software 2.x.x, and 3.x before 3.5.1C, does not properly verify that certificate DN fields match those of the certificate from the VPN Concentrator, which allows remote attackers to conduct man-in-the-middle attacks...