CVE-2005-4332

Currently unrated

Key Information:

Vendor: Cisco
Status: Network Admission Control Manager And Server System Software
Vendor: CVE Published:; 17 December 2005

Summary

Cisco Clean Access 3.5.5 and earlier on the Secure Smart Manager allows remote attackers to bypass authentication and cause a denial of service or upload files via direct requests to obsolete JSP files including (1) admin/uploadclient.jsp, (2) apply_firmware_action.jsp, and (3) file.jsp.

References

http://www.vupen.com/english/advisories/2005/3007

vdb-entryx_refsource_VUPEN

http://www.securityfocus.com/archive/1/419645/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://www.osvdb.org/21957

vdb-entryx_refsource_OSVDB

Timeline

Vulnerability published
Dec 17, 2005
Vulnerability Reserved
Dec 17, 2005