CVE-2007-4415 - Cisco VPN Client on Windows before 5.0.01.0600, and the 5.0.01.0600 InstallShield (IS) release, uses

CVE-2007-4415

Summary

Cisco VPN Client on Windows before 5.0.01.0600, and the 5.0.01.0600 InstallShield (IS) release, uses weak permissions for cvpnd.exe (Modify granted to Interactive Users), which allows local users to gain privileges via a modified cvpnd.exe.

References

Vulnerable Configurations

cpe:2.3:a:cisco:vpn_client:*:*:windows:*:*:*:*:*
cpe:2.3:a:cisco:vpn_client:*:*:windows:*:*:*:*:*
cpe:2.3:a:cisco:vpn_client:5.0.01.0600:*:*:*:*:*:*:*
cpe:2.3:a:cisco:vpn_client:5.0.01.0600:*:*:*:*:*:*:*

CVSS

Base:	6.8 (as of 15-10-2018 - 21:35)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	LOW	SINGLE

Impact

Confidentiality	Integrity	Availability
COMPLETE	COMPLETE	COMPLETE

cvss-vector via4

AV:L/AC:L/Au:S/C:C/I:C/A:C

refmap via4

bid	25332
bugtraq	20070816 Local privilege escalation vulnerability in Cisco VPN client
cisco	20070815 Local Privilege Escalation Vulnerabilities in Cisco VPN Client
sectrack	1018573
secunia	26459
sreason	3023
vupen	ADV-2007-2903
xf	cisco-vpn-cvpnd-privilege-escalation(36032)

Last major update

15-10-2018 - 21:35

Published

18-08-2007 - 21:17

Last modified

15-10-2018 - 21:35