3 matches found
CVE-2011-2678
The Cisco VPN Client 5.0.7.0240 and 5.0.7.0290 on 64-bit Windows platforms uses weak permissions NT AUTHORITY\INTERACTIVE:F for cvpnd.exe, which allows local users to gain privileges by replacing this executable file with an arbitrary program, aka Bug ID CSCtn50645. NOTE: this vulnerability exist...
CVE-2011-2678
The Cisco VPN Client 5.0.7.0240 and 5.0.7.0290 on 64-bit Windows platforms uses weak permissions NT AUTHORITY\INTERACTIVE:F for cvpnd.exe, which allows local users to gain privileges by replacing this executable file with an arbitrary program, aka Bug ID CSCtn50645. NOTE: this vulnerability exist...
CVE-2011-2678
The CVE-2011-2678 entry maps to Cisco VPN Client on 64-bit Windows, specifically versions 5.0.7.0240 and 5.0.7.0290. The root cause is insecure/weak permissions on cvpnd.exe (NT AUTHORITY\INTERACTIVE:F), which permits a local attacker to replace the executable with arbitrary code, enabling privil...