CVE-2006-5808

medium Cisco
CVSS v3 Base Score
4.6
AV:L/AC:L/Au:N/C:P/I:P/A:P
EPSS Score
0.1%
Exploitation probability in 30 days
Top 77% most likely to be exploited
Attack Characteristics
Attack Vector
Local
Attack Complexity
Low
Confidentiality
P
Integrity
P
Availability
P
Published: November 8, 2006 (7126 days ago)
Last Modified: April 23, 2026
Vendor: Cisco
Source: NVD

Description

The installation of Cisco Secure Desktop (CSD) before 3.1.1.45 uses insecure default permissions (all users full control) for the CSD directory and its parent directory, which allow local users to gain privileges by replacing CSD executables, aka "Local Privilege Escalation".

CWE

NVD-CWE-Other

Affected Products

cisco secure desktop

References

🔗 labs.idefense.com 🔗 secunia.com 🔗 securitytracker.com 🔗 www.cisco.com 🔗 www.osvdb.org