Authentication Flaw in Cisco Clean Access Software
CVE-2005-2631

Currently unrated

Key Information:

Vendor

Cisco
Status
Network Admission Control Manager And Server System Software
Vendor
CVE Published:
23 August 2005

What is CVE-2005-2631?

Cisco Clean Access versions 3.3.0 to 3.3.9, 3.4.0 to 3.4.5, and 3.5.0 to 3.5.3 contain a vulnerability that allows remote attackers to exploit unauthenticated API access. This weakness permits them to circumvent security measures, enabling unauthorized role changes for users or even disconnecting users altogether. The lack of proper authentication checks poses significant risks to network security and user integrity.

References

http://secunia.com/advisories/16472/
third-party-advisoryx_refsource_SECUNIA
http://www.cisco.com/warp/public/707/cisco-sa-20050817-cc...
vendor-advisoryx_refsource_CISCO
http://www.securityfocus.com/bid/14585
vdb-entryx_refsource_BID

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.