7.2
CVE-2007-1067
- EPSS 0.33%
- Veröffentlicht 22.02.2007 01:28:00
- Zuletzt bearbeitet 16.06.2026 22:36:51
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Cisco Secure Services Client (CSSC) 4.x, Trust Agent 1.x and 2.x, Cisco Security Agent (CSA) 5.0 and 5.1 (when a vulnerable Trust Agent has been deployed), and the Meetinghouse AEGIS SecureConnect Client do not properly parse commands, which allows local users to gain privileges via unspecified vectors, aka CSCsh30624.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Cisco ≫ Secure Services Client Version4.x
Cisco ≫ Security Agent Version5.0
Cisco ≫ Security Agent Version5.1
Cisco ≫ Trust Agent Version1
Meetinghouse ≫ Aegis Secureconnect Client Versionwindows_platform
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.33% | 0.249 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.2 | 3.9 | 10 |
AV:L/AC:L/Au:N/C:C/I:C/A:C
|
http://secunia.com/advisories/24258
http://www.cisco.com/warp/public/707/cisco-sa-20070221-supplicant.shtml
http://www.securityfocus.com/bid/22648
http://www.securitytracker.com/id?1017683
http://www.securitytracker.com/id?1017684
http://www.vupen.com/english/advisories/2007/0690
http://osvdb.org/33045
https://exchange.xforce.ibmcloud.com/vulnerabilities/32624