Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2015-0662

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2015-0662
Last Modified 23 Mar 2015 10:02:13
Published 16 Mar 2015 10:01:47
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2015-0662

Summary

Cisco AnyConnect Secure Mobility Client 4.0(.00051) and earlier allows local users to gain privileges via crafted IPC messages that trigger use of root privileges for a software-package installation, aka Bug ID CSCus79385.

Vulnerable Systems

Application

  • Cisco Anyconnect Secure Mobility Client 4.0%28.00051%29


References

CISCO - 20150314 Cisco AnyConnect Secure Mobility Client Arbitrary Code Execution Vulnerability

SECTRACK - 1031933


Last Updated: 27 May 2016 11:08:08