Vulnerability Bulletins |
Múltiples escaladas de privilegios en Cisco Secure Services Client |
|
Vulnerability classification |
|
Property | Value |
Confidence level | Oficial |
Impact | Aumento de privilegios |
Dificulty | Experto |
Required attacker level | Acceso remoto con cuenta |
System information |
|
Property | Value |
Affected manufacturer | Networking |
Affected software |
Cisco Secure Services Client 4.x Cisco Trust Agent 1.x, 2.x Meetinghouse AEGIS SecureConnect Client / Windows Cisco Security Agent (CSA) 5.0, 5.1 |
Description |
|
Se han descubierto múltiples vulnerabilidades en Cisco Secure Services Client (CSSC) y en versiones más reducidas del cliente CSSC que son componentes de Cisco Trust Agent (CTA) en Cisco Network Admission Control (NAC). Las vulnerabilidades son producidas por errores no especificados. Un atacante podría escalar privilegios o ver información sensible. |
|
Solution |
|
Actualización de software Cisco Ver tabla de actualizaciones en: http://www.cisco.com/en/US/products/products_security_advisory09186a00807ebe6e.shtml#software |
|
Standar resources |
|
Property | Value |
CVE | |
BID | |
Other resources |
|
Cisco Security Advisory (cisco-sa-20070221-supplicant) http://www.cisco.com/en/US/products/products_security_advisory09186a00807ebe6e.shtml |
Version history |
||
Version | Comments | Date |
1.0 | Aviso emitido | 2007-02-23 |