Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4414

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2007-4414
Last Modified 07 Mar 2011 09:58:31
Published 18 Aug 2007 05:17:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2007-4414

Summary

Cisco VPN Client on Windows before 4.8.02.0010 allows local users to gain privileges by enabling the "Start Before Logon" (SBL) and Microsoft Dial-Up Networking options, and then interacting with the dial-up networking dialog box.

Vulnerable Systems

Application

  • Cisco Vpn Client 4.8.1


References

BID - 25332

VUPEN - ADV-2007-2903

CISCO - 20070815 Local Privilege Escalation Vulnerabilities in Cisco VPN Client

SECTRACK - 1018573

SECUNIA - 26459

XF - cisco-vpn-dialup-privilege-escalation(36029)


Last Updated: 27 May 2016 10:45:51