CVE - CVE-2011-2678

CVE-ID
CVE-2011-2678	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
The Cisco VPN Client 5.0.7.0240 and 5.0.7.0290 on 64-bit Windows platforms uses weak permissions (NT AUTHORITY\INTERACTIVE:F) for cvpnd.exe, which allows local users to gain privileges by replacing this executable file with an arbitrary program, aka Bug ID CSCtn50645. NOTE: this vulnerability exists because of a CVE-2007-4415 regression.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
BUGTRAQ:20110628 NGS00051 Technical Advisory: Cisco VPN Client Privilege Escalation URL:http://www.securityfocus.com/archive/1/518638/100/0/threaded CISCO:20070815 Local Privilege Escalation Vulnerabilities in Cisco VPN Client URL:http://www.cisco.com/warp/public/707/cisco-sa-20070815-vpnclient.shtml MISC:http://isc.sans.edu/diary.html?storyid=11125 SREASON:8297 URL:http://securityreason.com/securityalert/8297 XF:cisco-vpn-cvpnd-priv-esc(68485) URL:https://exchange.xforce.ibmcloud.com/vulnerabilities/68485
Assigning CNA
MITRE Corporation
Date Record Created
20110707	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20110707)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)