The host is installed with Cisco VPN Client on Windows before 5.0.01.0600 or 5.0.01.0600 InstallShield (IS) and is prone to privilege escalation vulnerability. A flaw is present in the application due to weak permissions for cvpnd.exe. Successful exploitation allows local attackers to gain privileges via a modified cvpnd.exe.