The StartServiceCtrlDispatcher function in the cvpnd service (cvpnd.exe) in Cisco VPN client for Windows prior to 5.0.06.0100 does not properly handle an ERROR_FAILED_SERVICE_CONTROLLER_CONNECT error, which allows local users to cause a denial of service (service crash and VPN connection loss) via a manual start of cvpnd.exe while the cvpnd service is running.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cisco vpn client 4.7.00.0000 |
||
cisco vpn client 4.8.00.0000 |
||
cisco vpn client 4.8.1 |
||
cisco vpn client 3.1 |
||
cisco vpn client 3.6.5 |
||
cisco vpn client 5.0.02.0090 |
||
cisco vpn client 3.5.2 |
||
cisco vpn client 3.0 |
||
cisco vpn client 3.0.5 |
||
cisco vpn client 4.8.01 |
||
cisco vpn client 4.8.02.0010 |
||
cisco vpn client 4.9 |
||
cisco vpn client 5.0.00.340 |
||
cisco vpn client 5.0.01 |
||
cisco vpn client 5.0.2.0090 |
||
cisco vpn client 4.8.00.0440 |
||
cisco vpn client 0490 |
||
cisco vpn client 5.0.01.0600 |
||
cisco vpn client 2.0 |
||
cisco vpn client 3.5.1c |
||
cisco vpn client 3.5.1 |