Privilege Escalation in Cisco Security Products
CVE-2007-1065

Currently unrated

Key Information:

Vendor: Cisco
Status: Trust Agent; Security Agent; Secure Services Client; Aegis Secureconnect Client
Vendor: CVE Published:; 22 February 2007

Summary

The Cisco Secure Services Client, Cisco Trust Agent, and Cisco Security Agent are susceptible to a privilege escalation vulnerability that permits local users to elevate their privileges to SYSTEM level through unspecified vectors within the supplicant. This could potentially allow unauthorized access to sensitive functions and data within affected systems.

References

http://secunia.com/advisories/24258

third-party-advisoryx_refsource_SECUNIA

https://exchange.xforce.ibmcloud.com/vulnerabilities/32622

vdb-entryx_refsource_XF

http://www.vupen.com/english/advisories/2007/0690

vdb-entryx_refsource_VUPEN

Timeline

Vulnerability published
Feb 22, 2007
Vulnerability Reserved
Feb 21, 2007