Vulnerabilities > CVE-2006-5393 - Information Disclosure vulnerability in Cisco Secure Desktop SSL VPN Session
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
Cisco Secure Desktop (CSD) does not require that the ClearPageFileAtShutdown (aka CCE-Winv2.0-407) registry value equals 1, which might allow local users to read certain memory pages that were written during another user's SSL VPN session.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |