The installation of Cisco Secure Desktop (CSD) prior to 3.1.1.45 uses insecure default permissions (all users full control) for the CSD directory and its parent directory, which allow local users to gain privileges by replacing CSD executables, aka "Local Privilege Escalation".
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cisco secure desktop 3.1.1.27 |
||
cisco secure desktop |