Lucene search
MitreCVE-2007-1067HistoryFeb 22, 2007 - 1:28 a.m.
CVE-2007-1067
2007-02-2201:28:00
mitre
web.nvd.nist.gov
27
cisco
trust agent
cssc
csa
command parsing
vulnerability
cve-2007-1067
cscsh30624
CVSS2
7.2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
6.6
Confidence
Low
EPSS
0.001
Percentile
26.1%
Cisco Secure Services Client (CSSC) 4.x, Trust Agent 1.x and 2.x, Cisco Security Agent (CSA) 5.0 and 5.1 (when a vulnerable Trust Agent has been deployed), and the Meetinghouse AEGIS SecureConnect Client do not properly parse commands, which allows local users to gain privileges via unspecified vectors, aka CSCsh30624.
Affected configurations
Node
ciscosecure_services_clientMatch4.x
ORciscosecurity_agentMatch5.0
ORciscosecurity_agentMatch5.1
ORciscotrust_agentMatch1
ORmeetinghouseaegis_secureconnect_clientMatchwindows_platform
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cisco | secure_services_client | 4.x | cpe:2.3:a:cisco:secure_services_client:4.x:*:*:*:*:*:*:* |
| cisco | security_agent | 5.0 | cpe:2.3:a:cisco:security_agent:5.0:*:*:*:*:*:*:* |
| cisco | security_agent | 5.1 | cpe:2.3:a:cisco:security_agent:5.1:*:*:*:*:*:*:* |
| cisco | trust_agent | 1 | cpe:2.3:a:cisco:trust_agent:1:*:*:*:*:*:*:* |
| meetinghouse | aegis_secureconnect_client | windows_platform | cpe:2.3:a:meetinghouse:aegis_secureconnect_client:windows_platform:*:*:*:*:*:*:* |
References
Related
cvelist
cvelist
CVE-2007-1067
2007-02-22 01:00:00
prion
prion
Design/Logic Flaw
2007-02-22 01:28:00
nvd
nvd
CVE-2007-1067
2007-02-22 01:28:00
securityvulns
securityvulns
Cisco 802.1X Supplicant multiple security vulnerabilities
2007-02-21 00:00:00
CVSS2
7.2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
6.6
Confidence
Low
EPSS
0.001
Percentile
26.1%
Related for CVE-2007-1067