CVE-2009-4118
2.1
Vector
AV:L/AC:L/Au:N/C:N/I:N/A:P
Exploitability: 3.9 / Impact: 2.9
Source: NVD
Description
The StartServiceCtrlDispatcher function in the cvpnd service (cvpnd.exe) in Cisco VPN client for Windows before 5.0.06.0100 does not properly handle an ERROR_FAILED_SERVICE_CONTROLLER_CONNECT error, which allows local users to cause a denial of service (service crash and VPN connection loss) via a manual start of cvpnd.exe while the cvpnd service is running.
Affected (21)
Products: Cisco: Vpn Client
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Version 0490 base |
References (10)
Source: cve@mitre.org
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Exploit
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Timeline
No history available yet.