Vulnerability Description
The VPN driver in Cisco VPN Client on Windows does not properly interact with the kernel, which allows local users to cause a denial of service (kernel fault and system crash) via a crafted application, aka Bug ID CSCuc81669.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Vpn Client | All versions |
| Microsoft | Windows | All versions |
References
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2012-5429Vendor Advisory
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2012-5429Vendor Advisory
FAQ
What is CVE-2012-5429?
CVE-2012-5429 is a vulnerability with a CVSS score of 4.6 (MEDIUM). The VPN driver in Cisco VPN Client on Windows does not properly interact with the kernel, which allows local users to cause a denial of service (kernel fault and system crash) via a crafted applicatio...
How severe is CVE-2012-5429?
CVE-2012-5429 has been rated MEDIUM with a CVSS base score of 4.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2012-5429?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Vpn Client, Microsoft Windows.