This script is Copyright (C) 2016 Tenable Network Security, Inc.
The VPN client installed on the remote Windows host is affected by a
local privilege escalation vulnerability.
The version of the Cisco VPN client installed on the remote host
is 5.x prior to 5.0.07.0440. It is, therefore, affected by a flaw
related to loading dynamic link library (DLL) files due to searching
fixed paths that may not be trusted or under user control. A local
attacker can exploit this, via a trojan DLL injected into the search
path, to execute arbitrary code with elevated privileges.
See also :
This software is no longer supported. Contact the vendor for options.
Risk factor :
Medium / CVSS Base Score : 6.9