I have FortiGate 501E version V6.2.3 running SSL VPN in that deployed domain restriction, host integrity check and few addition features. user end currently using FortiClient 6.0.x, due to forticlient version vulnerability am going to upgrade the forticlient version.Post up-gradation (version 6.2.2 or higher) the forticlient few features (domain restriction) are not working. Raised TAC support ticket ,they saying need to buy EMS licence, any one facing this kind of issue.
Please suggest, any alternate soluction.
Note: Please refer below statement.
Threat Summary: FortiClient for Windows Insecure Temporary File vulnerability
An Insecure Temporary File (CWE-377) vulnerability in FortiClient for Windows may allow a local user to gain elevated privileges via exhausting the pool of temporary file names combined with a symbolic link attack.
Improper Access Control, Privilege Escalation
What is Affected:
FortiClient for Windows 6.2.1 and below
How to Protect Yourself:
Upgrade to FortiClient for Windows version 6.2.2 or above