High severity7.3NVD Advisory· Published Jun 15, 2017· Updated Jun 17, 2026
CVE-2017-9606
CVE-2017-9606
Description
Infotecs ViPNet Client and Coordinator before 4.3.2-42442 allow local users to gain privileges by placing a Trojan horse ViPNet update file in the update folder. The attack succeeds because of incorrect folder permissions in conjunction with a lack of integrity and authenticity checks.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4cpe:2.3:a:infotecs:vipnet_client:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:infotecs:vipnet_client:*:*:*:*:*:*:*:*range: <=4.3.1
- (no CPE)range: <4.3.2-42442
cpe:2.3:a:infotecs:vipnet_coordinator:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:infotecs:vipnet_coordinator:*:*:*:*:*:*:*:*range: <=4.3.1
- (no CPE)range: <4.3.2-42442
Patches
Vulnerability mechanics
News mentions
0No linked articles in our index yet.