Secure Desktop@* Security Vulnerabilities and Issues — Secure Desktop@* CVE List

Lucene search

CiscoSecure Desktop*

5 matches found

CVE•added 2006/10/18 7:7 p.m.•47 views

CVE-2006-5394

The default configuration of Cisco Secure Desktop (CSD) has an unchecked "Disable printing" box in Secure Desktop Settings, which might allow local users to read data that was sent to a printer during another user's SSL VPN session.

2.1CVSS6.2AI score0.00079EPSS

CVE•added 2006/10/18 7:7 p.m.•38 views

CVE-2006-5393

Cisco Secure Desktop (CSD) does not require that the ClearPageFileAtShutdown (aka CCE-Winv2.0-407) registry value equals 1, which might allow local users to read certain memory pages that were written during another user's SSL VPN session.

5.5CVSS6.2AI score0.00074EPSS

CVE•added 2006/11/08 10:7 p.m.•35 views

CVE-2006-5808

The installation of Cisco Secure Desktop (CSD) before 3.1.1.45 uses insecure default permissions (all users full control) for the CSD directory and its parent directory, which allow local users to gain privileges by replacing CSD executables, aka "Local Privilege Escalation".

4.6CVSS6.7AI score0.00075EPSS

CVE•added 2006/11/08 10:7 p.m.•32 views

CVE-2006-5806

SSL VPN Client in Cisco Secure Desktop before 3.1.1.45, when configured to spawn a web browser after a successful connection, stores sensitive browser session information in a directory outside of the CSD vault and does not restrict the user from saving files outside of the vault, which is not clea...

2.1CVSS5.8AI score0.00089EPSS

CVE•added 2006/11/08 10:7 p.m.•31 views

CVE-2006-5807

Cisco Secure Desktop (CSD) before 3.1.1.45 allows local users to escape out of the secure desktop environment by using certain applications that switch to the default desktop, aka "System Policy Evasion".

4.6CVSS6.3AI score0.0011EPSS