Computer Security
[EN] securityvulns.ru no-pyccku


Multiple Cisco Clean Access vulnerabilities
updated since 04.01.2007
Published:09.01.2007
Source:
SecurityVulns ID:6997
Type:remote
Threat Level:
7/10
Description:Shared secret for client access is same for all devices and can not be changed. Location of database backup (snapshot) can be bruteforced and downloaded without authentication.
Affected:CISCO : Cisco Clean Access 3.5
 CISCO : Cisco Clean Access 3.6
 CISCO : Cisco Clean Access 4.0
CVE:CVE-2007-0058 (Cisco Clean Access (CCA) 3.5.x through 3.5.9 and 3.6.x through 3.6.1.1 on the Clean Access Manager (CAM) allows remote attackers to bypass authentication and download arbitrary manual database backups by guessing the snapshot filename using brute force, then making a direct request for the file.)
 CVE-2007-0057 (Cisco Clean Access (CCA) 3.6.x through 3.6.4.2 and 4.0.x through 4.0.3.2 does not properly configure or allow modification of a shared secret authentication key, which causes all devices to have the same shared sercet and allows remote attackers to gain unauthorized access.)
Original documentdocumentDamir Rajnovic, Re: [Full-disclosure] Cisco Security Advisory: Multiple Vulnerabilities in Cisco Clean Access (09.01.2007)
 documentCISCO, Cisco Security Advisory: Multiple Vulnerabilities in Cisco Clean Access (04.01.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod