VULHUB ™

The Cisco VPN Client is prone to a remotely exploitable buffer overflow condition. It is possible to trigger this condition by sending malformed IKE packets to the client. The overflow is known to occur when the client attempts to process an IKE packet with more than 57 valid payloads. It may be possible to exploit this condition to execute arbitrary code with the privileges of the client. It is possible that exploitation of this vulnerability may affect availability of the client, resulting in a denial of service condition. This vulnerability affects versions of the client on all platforms.

The Cisco VPN Client is prone to a remotely exploitable buffer overflow condition. It is possible to trigger this condition by sending malformed IKE packets to the client. The overflow is known to occur when the client attempts to process an IKE packet with more than 57 valid payloads. It may be possible to exploit this condition to execute arbitrary code with the privileges of the client. It is possible that exploitation of this vulnerability may affect availability of the client, resulting in a denial of service condition. This vulnerability affects versions of the client on all platforms.