The Downloadable RADIUS ACLs feature in Cisco PIX and VPN 3000 concentrators, when creating an ACL on the Cisco Secure Access Control Server (CS ACS), generates a random internal name for an ACL that is also used as a hidden user name and password, which allows remote attackers to gain privileges by sniffing the username from the cleartext portion of a RADIUS session, then using the password to log in to another device that uses CS ACS.
References
Configurations
Configuration 1 (hide)
AND |
|
History
21 Nov 2024, 00:04
Type | Values Removed | Values Added |
---|---|---|
References | () http://secunia.com/advisories/18141 - | |
References | () http://www.cisco.com/en/US/products/sw/secursw/ps2086/products_field_notice09186a00805bf1c4.shtml - | |
References | () http://www.osvdb.org/22193 - | |
References | () http://www.securityfocus.com/archive/1/420020/100/0/threaded - | |
References | () http://www.securityfocus.com/archive/1/420103/100/0/threaded - | |
References | () http://www.securityfocus.com/bid/16025 - |
02 Jul 2024, 12:57
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:cisco:pix_firewall_software:6.1.5\(104\):*:*:*:*:*:*:* |
11 Aug 2023, 18:54
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:cisco:adaptive_security_appliance_software:7.0.1.4:*:*:*:*:*:*:* cpe:2.3:a:cisco:adaptive_security_appliance_software:7.0\(4\):*:*:*:*:*:*:* cpe:2.3:a:cisco:adaptive_security_appliance_software:7.0.4.3:*:*:*:*:*:*:* |
cpe:2.3:o:cisco:adaptive_security_appliance_software:7.0:*:*:*:*:*:*:* cpe:2.3:o:cisco:adaptive_security_appliance_software:7.0\(4\):*:*:*:*:*:*:* cpe:2.3:o:cisco:adaptive_security_appliance_software:7.0.1.4:*:*:*:*:*:*:* cpe:2.3:o:cisco:adaptive_security_appliance_software:7.0.4.3:*:*:*:*:*:*:* |
Information
Published : 2005-12-22 11:03
Updated : 2024-11-21 00:04
NVD link : CVE-2005-4499
Mitre link : CVE-2005-4499
CVE.ORG link : CVE-2005-4499
JSON object : View
Products Affected
cisco
- vpn_3015_concentrator
- pix_firewall_506
- pix_firewall_515e
- pix_firewall_535
- vpn_3020_concentrator
- pix_firewall_525
- pix_firewall_software
- pix_firewall_520
- pix_firewall_501
- vpn_3001_concentrator
- vpn_3060_concentrator
- pix_firewall_515
- adaptive_security_appliance_software
- vpn_3005_concentrator_software
- vpn_3002_hardware_client
- vpn_3030_concentator
- secure_access_control_server
- vpn_3000_concentrator_series_software
- pix_asa_ids
- vpn_3080_concentrator
- pix_firewall
CWE