Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2015-0665

Overview

Vulnerability Score 6.6 6.6
CVE Id CVE-2015-0665
Last Modified 23 Mar 2015 10:02:15
Published 16 Mar 2015 10:01:49
Confidentiality Impact NONE NONE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2015-0665

Summary

The Hostscan module in Cisco AnyConnect Secure Mobility Client 4.0(.00051) and earlier allows local users to write to arbitrary files via crafted IPC messages, aka Bug ID CSCus79173.

Vulnerable Systems

Application

  • Cisco Anyconnect Secure Mobility Client 4.0%28.00051%29


References

CISCO - 20150314 Cisco AnyConnect Secure Mobility Client Hostscan Path Traversal Vulnerability

SECTRACK - 1031931


Last Updated: 27 May 2016 11:08:08