Security Flaw in Cisco Secure Desktop Allows Unauthorized Data Access
CVE-2006-5394

Currently unrated

Key Information:

Vendor: Cisco
Status: Secure Desktop
Vendor: CVE Published:; 18 October 2006

Summary

The default configuration of Cisco Secure Desktop (CSD) contains a vulnerability due to an unchecked 'Disable printing' option. This flaw may allow local users to access sensitive information sent to a printer by another user's SSL VPN session. The potential for unauthorized data access during VPN connections raises significant concerns regarding the security of data privacy in corporate environments. Administrators are urged to reassess their configurations and apply necessary updates as recommended by Cisco.

References

http://www.cisco.com/en/US/products/products_security_adv...

vendor-advisoryx_refsource_CISCO

http://www.securityfocus.com/bid/20410

vdb-entryx_refsource_BID

http://securitytracker.com/id?1017018

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Oct 18, 2006
Vulnerability Reserved
Oct 18, 2006