Cisco VPN Client for Windows Multiple Local Privilege Escalation Vulnerabilities

Cisco VPN Client for Windows Multiple Local Privilege Escalation Vulnerabilities

Cisco VPN Client for Windows is prone to multiple local privilege-escalation vulnerabilities.

Successfully exploiting these issues allows attackers with local, interactive access to affected computers to gain SYSTEM-level privileges. This facilitates the complete compromise of affected computers.

Versions prior to 4.8.02.0010 and 5.0.01.0600 of Cisco VPN Client for the Microsoft Windows platform are vulnerable to these issues.

These issues are tracked as Cisco Bug IDs CSCse89550 and CSCsj00785.