Vulnerabilities > CVE-2007-1066

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

cisco

meetinghouse

NVD

Published: 2007-02-22

Updated: 2017-07-29

Summary

Cisco Secure Services Client (CSSC) 4.x, Trust Agent 1.x and 2.x, Cisco Security Agent (CSA) 5.0 and 5.1 (when a vulnerable Trust Agent has been deployed), and the Meetinghouse AEGIS SecureConnect Client use an insecure default Discretionary Access Control Lists (DACL) for the connection client GUI, which allows local users to gain privileges by injecting "a thread under ConnectionClient.exe," aka CSCsg20558.

Vulnerable Configurations

Part	Description	Count
Application	Cisco Cisco Trust Agent 2.0 Cisco Trust Agent 2.0.1 Cisco Trust Agent 2.1 Cisco Trust Agent 1.0 Cisco Security Agent 5.1 Cisco Security Agent 5.0 Cisco Secure Services Client 4.0.51 Cisco Secure Services Client 4.0 Cisco Secure Services Client 4.0.5	9
Application	Meetinghouse Meetinghouse Aegis Secureconnect Client Windows_Platform	1

Vulnerabilities > CVE-2007-1066 {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"CVE-2007-1066"}]}

Summary

Vulnerable Configurations

References

Vulnerabilities > CVE-2007-1066