Cisco VPN 5000 Client Buffer Overrun Vulnerabilities

info
discussion
exploit
solution
references

Cisco VPN 5000 Client Buffer Overrun Vulnerabilities

Buffer overrun vulnerabilities have been reported in the Cisco VPN 5000 UNIX clients available for Linux and Solaris systems. The condition affects the binaries 'close_tunnel' and 'open_tunnel', both installed setuid root by default. Malicious local users may exploit these vulnerabilities to gain superuser privileges on the affected host.