2 matches found
Cisco AnyConnect Secure Mobility Client < 4.4.02034 Local Privilege Escalation
The version of Cisco AnyConnect Secure Mobility Client installed on the remote Windows host is prior to 4.4.02034. It is, therefore, affected by a local privilege escalation vulnerability due to improper validation of paths and filenames of dynamic-link library DLL files before they are loaded. A...
CVE-2017-6638
Cisco AnyConnect Secure Mobility Client for Windows versions prior to 4.4.02034 are affected by a local privilege escalation vulnerability due to incomplete input validation when loading DLLs. An authenticated local attacker who can place a malicious DLL in a system directory could exploit this t...