Cisco VPN Client vulnerability for Windows XP/2000
SERVICES AFFECTED: Windows XP/2000 machines running the Cisco VPN client.
DETAILS: The Cisco VPN Client for Windows XP/2000 has a vulnerability that can allow non-privileged users to gain administrative privileges. All Windows XP/2000 users should upgrade to a version of the Cisco VPN client that is not affected by this vulnerability. A version of the "fixed" Cisco VPN client for Windows is located at: http://www.cs.cmu.edu/~help/networking/vpn/vpn_windows.html
Please contact the SCS Help Desk at x8-4231 or send mail to firstname.lastname@example.org with any questions or concerns.
Thank you for your attention,
SCS Help Desk