VYPR
High severity7.3NVD Advisory· Published Jun 15, 2017· Updated Jun 17, 2026

CVE-2017-9606

CVE-2017-9606

Description

Infotecs ViPNet Client and Coordinator before 4.3.2-42442 allow local users to gain privileges by placing a Trojan horse ViPNet update file in the update folder. The attack succeeds because of incorrect folder permissions in conjunction with a lack of integrity and authenticity checks.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • cpe:2.3:a:infotecs:vipnet_client:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:infotecs:vipnet_client:*:*:*:*:*:*:*:*range: <=4.3.1
    • (no CPE)range: <4.3.2-42442
  • cpe:2.3:a:infotecs:vipnet_coordinator:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:infotecs:vipnet_coordinator:*:*:*:*:*:*:*:*range: <=4.3.1
    • (no CPE)range: <4.3.2-42442

Patches

Vulnerability mechanics

News mentions

0

No linked articles in our index yet.