Phase:Buffer overflows in the Cisco VPN 5000 Client before 5.2.7 for Linux, and VPN 5000 Client before 5.2.8 for Solaris, allow local users to gain root privileges via (1) close_tunnel and (2) open_tunnel.
ReferencesCISCO:Wednesday, September 18, 2002 Cisco VPN 5000 Client Multiple Vulnerabilities | URL:http://www.cisco.com/warp/public/707/vpn5k-client-multiple-vuln-pub.shtml | BID:5734 | URL:http://www.securityfocus.com/bid/5734 | XF:cisco-vpn5000-binary-bo(10131) |
Votes:Proposed (Monday, March 17, 2003)
Comments: ACCEPT(4) Green, Baker, Cole, Jones | NOOP(1) Cox
F7: