If you connected via VPN, you have a username and credentials. Sometimes they are usually linked to an AD (Windows environment), try verifying the certificate templates, they are usually a good pivot for escalating privileges. Something less invasive would be to list the shared resources and see incorrect privileges given to the resources.
Finally I would go with a scan, it is invasive for my taste.
Finally I would go with a scan, it is invasive for my taste.