Lucene search
CiscoCVE-2015-0664HistoryMar 18, 2015 - 11:59 p.m.
CVE-2015-0664
2015-03-1823:59:00
CWE-20
cisco
web.nvd.nist.gov
34
cve-2015-0664
cisco
anyconnect
secure mobility client
vulnerability
bug id
cscus79195
nvd
CVSS2
4.3
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:S/C:P/I:P/A:P
AI Score
6.6
Confidence
Low
EPSS
0
Percentile
5.1%
The IPC channel in Cisco AnyConnect Secure Mobility Client 4.0(.00051) and earlier allows local users to write to arbitrary userspace memory locations, and consequently gain privileges, via crafted messages, aka Bug ID CSCus79195.
Affected configurations
Node
ciscoanyconnect_secure_mobility_clientRange≤4.0\(.00051\)
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cisco | anyconnect_secure_mobility_client | * | cpe:2.3:a:cisco:anyconnect_secure_mobility_client:*:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2015-0664
2015-03-18 23:00:00
cisco
cisco
prion
prion
Memory corruption
2015-03-18 23:59:00
nvd
nvd
CVE-2015-0664
2015-03-18 23:59:00
nessus
nessus
kaspersky
kaspersky
KLA10482 Multiple vulnerabilities in Cisco AnyConnect SMC
2015-03-17 00:00:00
CVSS2
4.3
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:S/C:P/I:P/A:P
AI Score
6.6
Confidence
Low
EPSS
0
Percentile
5.1%
Related for CVE-2015-0664