Security Advisory

CVE-2017-9606

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2017-06-15 03:00:00

Last updated 2024-08-05 17:11:02

Assigner mitre

State PUBLISHED

Description

Infotecs ViPNet Client and Coordinator before 4.3.2-42442 allow local users to gain privileges by placing a Trojan horse ViPNet update file in the update folder. The attack succeeds because of incorrect folder permissions in conjunction with a lack of integrity and authenticity checks.

← Browse all CVEs View on cve.org ↗