Cisco VPN Client on Windows Dial-up Networking Dialog Local Privilege Escalation

This script is Copyright (C) 2007-2016 Tenable Network Security, Inc.


Synopsis :

The remote Windows host has a program that is prone to a local
privilege escalation attack.

Description :

The version of the Cisco VPN client installed on the remote host
reportedly allows an unprivileged local user to elevate his privileges
to the LocalSystem account by enabling the 'Start Before Login'
feature and configuring a VPN profile to use Microsoft's Dial-Up
Networking interface.

See also :

http://www.nessus.org/u?132892db
http://www.securityfocus.com/archive/1/476651/30/0/threaded

Solution :

Upgrade to Cisco VPN Client version 4.8.02.0010 or later.

Risk factor :

Medium / CVSS Base Score : 6.8
(CVSS2#AV:L/AC:L/Au:S/C:C/I:C/A:C)
CVSS Temporal Score : 5.9
(CVSS2#E:ND/RL:OF/RC:C)
Public Exploit Available : true

Family: Windows

Nessus Plugin ID: 25906 (cisco_vpn_client_4_8_02_0010.nasl)

Bugtraq ID: 25332

CVE ID: CVE-2007-4414

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now