![]() To exploit this vulnerability, the attacker would also need valid user credentials on the system upon which the An圜onnect client is being run. ![]() In order to successfully exploit this vulnerability, there must be an ongoing An圜onnect session by the targeted user at the time of the attack. ![]() This script would execute with the privileges of the targeted An圜onnect user. A successful exploit could allow an attacker to cause the targeted An圜onnect user to execute a script. An attacker could exploit this vulnerability by sending crafted IPC messages to the An圜onnect client IPC listener. The vulnerability is due to a lack of authentication to the IPC listener. A vulnerability in the interprocess communication (IPC) channel of Cisco An圜onnect Secure Mobility Client Software could allow an authenticated, local attacker to cause a targeted An圜onnect user to execute a malicious script.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |