Vulnerabilities > Cisco > VPN Client > 5.0.01
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2015-10-06 | CVE-2015-7600 | Permissions, Privileges, and Access Controls vulnerability in Cisco VPN Client Cisco VPN Client 5.x through 5.0.07.0440 uses weak permissions for vpnclient.ini, which allows local users to gain privileges by entering an arbitrary program name in the Command field of the ApplicationLauncher section. | 7.2 |
2012-09-16 | CVE-2012-3052 | Unspecified vulnerability in Cisco VPN Client Untrusted search path vulnerability in Cisco VPN Client 5.0 allows local users to gain privileges via a Trojan horse DLL in the current working directory, aka Bug ID CSCua28747. local cisco | 6.9 |
2009-12-01 | CVE-2009-4118 | Local Denial of Service vulnerability in Cisco VPN Client for Windows 'StartServiceCtrlDispatche' The StartServiceCtrlDispatcher function in the cvpnd service (cvpnd.exe) in Cisco VPN client for Windows before 5.0.06.0100 does not properly handle an ERROR_FAILED_SERVICE_CONTROLLER_CONNECT error, which allows local users to cause a denial of service (service crash and VPN connection loss) via a manual start of cvpnd.exe while the cvpnd service is running. | 2.1 |