SN VPN Client Standard 6.87.210

Features, improvements, vulnerabilities, fixes since release 6.87 build 108

Vulnerabilities

• Includes a security fix to prevent a privilege escalation on Windows operating systems. Details on this vulnerability can be found on our website https://advisories.stormshield.eu/2023-034/.

Bug Fixing

• When using multiple smartcards, fixes an issue where a tunnel would be closed unexpectedly upon removing a smartcard that is not used with the VPN Client,

• Fixes support for press and hold right-click to open the contextual menu for Windows in tablet mode,

• Fixes an issue where the systray menu gave access to the Configuration Panel despite the option to restrict panel access to administrators being set.

Major changes since version 6.64

Exclusive support for Windows 11 and Windows 10 64-bit on Intel processors

For more information, refer to the section on Compatibility.

Compatibility of configuration files

For more information, refer to the section on Compatibility.

Gateway certificate check

By default, the gateway certificate will be checked each time a tunnel is opened. It may be necessary to import the complete chain of certification authorities (CAs) to authenticate the gateway, either into the Windows store or into the VPN configuration file.

You can change this default behavior, though we do not recommend doing so (Options menu -> PKI Options).

End of support for "weak" algorithms

For security reasons, this version no longer supports the following algorithms: DES, 3DES, MD-5, SHA-1, DH 1-2, DH 5. If a previous configuration contains one of these algorithms, the installer will convert them to "auto" (automatic negotiation with the gateway).

If the gateway only supports this type of algorithm, you will not be able to establish a connection with this version of the SN VPN Client Standard.