The host is installed with Cisco AnyConnect Secure Mobility Client 4.0.00051 and earlier and is prone to a path traversal vulnerability. A flaw is present in the application which fails to properly handle the host scan module. Successful exploitation could allow attackers to write to arbitrary files via crafted IPC messages.