CVE-2006-2679 — Cisco VPN Client vulnerability

3 documents3 sources

Severity

7.2HIGHNVD

EPSS

0.1%

top 84.55%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco VPN Client

Timeline

PublishedMay 31

Latest updateMay 1

Description

Unspecified vulnerability in the VPN Client for Windows Graphical User Interface (GUI) (aka the VPN client dialer) in Cisco VPN Client for Windows 4.8.00.* and earlier, except for 4.7.00.0533, allows local authenticated, interactive users to gain privileges, possibly due to privileges of dialog boxes, aka bug ID CSCsd79265.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages1 packages

▶NVDcisco/vpn_client9 versions+8

Patches

Patch: secunia.com ↗Patch: securitytracker.com ↗Patch: www.cisco.com ↗

🔴Vulnerability Details

GHSA

GHSA-v738-7767-9gg7: Unspecified vulnerability in the VPN Client for Windows Graphical User Interface (GUI) (aka the VPN client dialer) in Cisco VPN Client for Windows 4↗2022-05-01

▶

CVEList

CVE-2006-2679: Unspecified vulnerability in the VPN Client for Windows Graphical User Interface (GUI) (aka the VPN client dialer) in Cisco VPN Client for Windows 4↗2006-05-31

▶