CVE-2007-4415

Cisco VPN Client on Windows before 5.0.01.0600, and the 5.0.01.0600 InstallShield (IS) release, uses weak permissions for cvpnd.exe (Modify granted to Interactive Users), which allows local users to gain privileges via a modified cvpnd.exe.

CVSS v2.0 6.8 MEDIUM

6.8^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:L/AC:L/Au:S/C:C/I:C/A:C

Exploitability : 3.1 / Impact : 10.0

Access Vector LOCAL

Access Complexity LOW

Authentication SINGLE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://www.cisco.com/warp/public/707/cisco-sa-20070815-vpnclient.shtml	Patch
http://www.securityfocus.com/bid/25332	Patch
http://securitytracker.com/id?1018573	Patch
http://secunia.com/advisories/26459	Patch Vendor Advisory
http://securityreason.com/securityalert/3023
http://www.vupen.com/english/advisories/2007/2903
https://exchange.xforce.ibmcloud.com/vulnerabilities/36032
http://www.securityfocus.com/archive/1/476812/100/0/threaded

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:cisco:vpn_client:5.0.01.0600:::::::*
	cpe:2.3:a:cisco:vpn_client:::windows:::::*

Information

Published : 2007-08-18 14:17

Updated : 2018-10-15 14:35

NVD link : CVE-2007-4415

Mitre link : CVE-2007-4415

JSON object : View

CWE

NVD-CWE-Other

Products Affected

cisco

vpn_client

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://www.cisco.com/warp/public/707/cisco-sa-20070815-vpnclient.shtml", "name": "20070815 Local Privilege Escalation Vulnerabilities in Cisco VPN Client", "tags": ["Patch"], "refsource": "CISCO"}, {"url": "http://www.securityfocus.com/bid/25332", "name": "25332", "tags": ["Patch"], "refsource": "BID"}, {"url": "http://securitytracker.com/id?1018573", "name": "1018573", "tags": ["Patch"], "refsource": "SECTRACK"}, {"url": "http://secunia.com/advisories/26459", "name": "26459", "tags": ["Patch", "Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://securityreason.com/securityalert/3023", "name": "3023", "tags": [], "refsource": "SREASON"}, {"url": "http://www.vupen.com/english/advisories/2007/2903", "name": "ADV-2007-2903", "tags": [], "refsource": "VUPEN"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36032", "name": "cisco-vpn-cvpnd-privilege-escalation(36032)", "tags": [], "refsource": "XF"}, {"url": "http://www.securityfocus.com/archive/1/476812/100/0/threaded", "name": "20070816 Local privilege escalation vulnerability in Cisco VPN client", "tags": [], "refsource": "BUGTRAQ"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Cisco VPN Client on Windows before 5.0.01.0600, and the 5.0.01.0600 InstallShield (IS) release, uses weak permissions for cvpnd.exe (Modify granted to Interactive Users), which allows local users to gain privileges via a modified cvpnd.exe."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2007-4415", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 6.8, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:S/C:C/I:C/A:C", "authentication": "SINGLE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "severity": "MEDIUM", "impactScore": 10.0, "obtainAllPrivilege": true, "exploitabilityScore": 3.1, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2007-08-18T21:17Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:cisco:vpn_client:5.0.01.0600:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:cisco:vpn_client:*:*:windows:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "5.0.01"}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2018-10-15T21:35Z"}

6.8 /10