Execution Error in Cisco Secure Desktop for AnyConnect SSL VPN
CVE-2009-5008

Currently unrated

Key Information:

Vendor: Cisco
Status: Secure Desktop
Vendor: CVE Published:; 14 October 2010

What is CVE-2009-5008?

Cisco Secure Desktop, when utilized with an AnyConnect SSL VPN server, exhibits a flaw where it inadequately performs verification checks. This oversight may allow local users to circumvent established policy restrictions by employing a modified executable file, thus potentially compromising system integrity and security.

References

http://www.infradead.org/openconnect.html

x_refsource_MISC

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Oct 14, 2010