CVE-2015-7600
Cisco VPN Client 5.x up to 5.0.07.0440 has insecure permissions on vpnclient.ini, enabling local privilege escalation by inserting an arbitrary program name in the Command field of the ApplicationLauncher section. This allows a local attacker to execute arbitrary code with elevated privileges on ...