The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Vulnerability of Cisco AnyConnect Secure Mobility Client: privilege escalation via DLL

Synthesis of the vulnerability 

An attacker can make Cisco AnyConnect Secure Mobility Client loads and run arbitrary DLL, in order to escalate his privileges.
Vulnerable products: Cisco AnyConnect Secure Mobility Client, AnyConnect VPN Client.
Severity of this weakness: 3/4.
Creation date: 23/09/2015.
Références of this bulletin: 41136, CSCuv01279, CVE-2015-6305, VIGILANCE-VUL-17958.

Description of the vulnerability 

The Cisco AnyConnect Secure Mobility Client is used to create tunnels for virtual private networks.

It may load and run DLL with system privileges for various internal needs. However, MS-Windows looks for DLL in many places by default, and the product does not restrict this set of locations. An attacker can plant a DLL in one of the writable directory that Windows looks in for to make it run.

An attacker can therefore make Cisco AnyConnect Secure Mobility Client loads and run arbitrary DLL, in order to escalate his privileges.
Full bulletin, software filtering, emails, fixes, ... (Request your free trial)

This weakness note impacts software or systems such as Cisco AnyConnect Secure Mobility Client, AnyConnect VPN Client.

Our Vigil@nce team determined that the severity of this threat note is important.

The trust level is of type confirmed by the editor, with an origin of user shell.

A proof of concept or an attack tool is available, so your teams have to process this alert. An attacker with a technician ability can exploit this computer weakness.

Solutions for this threat 

Cisco AnyConnect Secure Mobility Client: solution CSCuv01279.
The solution CSCuv01279 is available:
  https://tools.cisco.com/bugsearch/bug/CSCuv01279
  https://tools.cisco.com/quickview/bug/CSCuv01279
Full bulletin, software filtering, emails, fixes, ... (Request your free trial)

Computer vulnerabilities tracking service 

Vigil@nce provides a networks vulnerabilities announce. The Vigil@nce computer vulnerability tracking service alerts your teams of vulnerabilities or threats impacting your information system.