Cisco VPN Client Distinguished Name Validation Vulnerability

info
discussion
exploit
solution
references

Cisco VPN Client Distinguished Name Validation Vulnerability

A flaw in the Cisco VPN Client prevents the client from sufficiently validating credentials supplied in a certificate used for VPN privacy. The client does not properly validate Distinguished Names (DN) contained in some certificates, and may trust certificates supplied by a third party that represent a malicious host.