Arbitrary Memory Write Vulnerability in Cisco AnyConnect Secure Mobility Client 4.0(.00051) and Earlier

CVE-2015-0664 · MEDIUM Severity

AV:L/AC:L/AU:S/C:P/I:P/A:P

The IPC channel in Cisco AnyConnect Secure Mobility Client 4.0(.00051) and earlier allows local users to write to arbitrary userspace memory locations, and consequently gain privileges, via crafted messages, aka Bug ID CSCus79195.

Learn more about our Cis Benchmark Audit For Cisco.