![]() ![]() There are no workarounds that address this vulnerability. To exploit this vulnerability, the attacker needs valid credentials on the Windows system.Ĭisco has released software updates that address this vulnerability. A successful exploit could allow the attacker to execute arbitrary code on the affected machine with SYSTEM privileges. An attacker could exploit this vulnerability by sending a crafted IPC message to the An圜onnect process. This vulnerability is due to insufficient validation of resources that are loaded by the application at run time. A vulnerability in the interprocess communication (IPC) channel of Cisco An圜onnect Secure Mobility Client for Windows could allow an authenticated, local attacker to perform a DLL hijacking attack on an affected device if the VPN Posture (HostScan) Module is installed on the An圜onnect client.
0 Comments
Leave a Reply. |