CVE-2009-5008 Information

Description

Cisco Secure Desktop (CSD) when used in conjunction with an AnyConnect SSL VPN server does not properly perform verification which allows local users to bypass intended policy restrictions via a modified executable file.

Reference

http://www.infradead.org/openconnect.html