Network Access Control Device Vulnerability in Forescout CounterACT
CVE-2012-4985

Currently unrated

Key Information:

Vendor: Forescout
Status: Counteract
Vendor: CVE Published:; 5 December 2012

What is CVE-2012-4985?

The Forescout CounterACT NAC device version 6.3.4.1 is vulnerable due to its failure to block ARP and ICMP traffic from unrecognized clients. This oversight allows malicious actors to execute ARP poisoning attacks, potentially compromising network integrity and exposing sensitive data. Attackers can send specially crafted packets to manipulate the flow of network traffic, leading to various detrimental effects, including man-in-the-middle attacks. Organizations utilizing this device should swiftly implement measures to mitigate this vulnerability to enhance their network security posture.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/80284

vdb-entryx_refsource_XF

http://www.reactionpenetrationtesting.co.uk/forescout-nac...

x_refsource_MISC

http://www.securityfocus.com/bid/56689

vdb-entryx_refsource_BID

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 5, 2012
Vulnerability Reserved
Sep 19, 2012