Vulnerability Details CVE-2006-2679
Unspecified vulnerability in the VPN Client for Windows Graphical User Interface (GUI) (aka the VPN client dialer) in Cisco VPN Client for Windows 4.8.00.* and earlier, except for 4.7.00.0533, allows local authenticated, interactive users to gain privileges, possibly due to privileges of dialog boxes, aka bug ID CSCsd79265.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 15.6%
CVSS Severity
CVSS v2 Score 7.2
References
- http://secunia.com/advisories/20261
- http://securitytracker.com/id?1016156
- http://www.cisco.com/en/US/products/products_security_advisory09186a008069a323.shtml
- http://www.osvdb.org/25888
- http://www.securityfocus.com/bid/18094
- http://www.vupen.com/english/advisories/2006/1964
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26632
- http://secunia.com/advisories/20261
- http://securitytracker.com/id?1016156
- http://www.cisco.com/en/US/products/products_security_advisory09186a008069a323.shtml
- http://www.osvdb.org/25888
- http://www.securityfocus.com/bid/18094
- http://www.vupen.com/english/advisories/2006/1964
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26632
Products affected by CVE-2006-2679
-
cpe:2.3:a:cisco:vpn_client:2.0
-
cpe:2.3:a:cisco:vpn_client:3.0
-
cpe:2.3:a:cisco:vpn_client:3.0.5
-
cpe:2.3:a:cisco:vpn_client:3.1
-
cpe:2.3:a:cisco:vpn_client:3.5.1
-
cpe:2.3:a:cisco:vpn_client:3.5.1c
-
cpe:2.3:a:cisco:vpn_client:3.5.2
-
cpe:2.3:a:cisco:vpn_client:4.7.00.0000
-
cpe:2.3:a:cisco:vpn_client:4.8.00.0000