CVE-2005-4825

Cisco Clean Access 3.5.5 and earlier on the Secure Smart Manager allows remote attackers to bypass authentication and cause a denial of service (disk consumption), or make unauthorized files accessible, by uploading files through requests to certain JSP scripts, a related issue to CVE-2005-4332.

Published: Dec 31, 2005
Updated: Apr 13, 2023
CVE: CVE-2005-4825
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5.7
AV:A/AC:M/Au:N/C:N/I:N/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
cisco / network_admission_control_manager_and_server_system_software	3.5.2	3.5.2.x
cisco / network_admission_control_manager_and_server_system_software	3.5.3	3.5.3.x
cisco / network_admission_control_manager_and_server_system_software	3.5.4	3.5.4.x
cisco / network_admission_control_manager_and_server_system_software	3.5.5	3.5.5.x
cisco / network_admission_control_manager_and_server_system_software	3.5	3.5.x
cisco / network_admission_control_manager_and_server_system_software	3.5.1	3.5.1.x
cisco / network_admission_control_manager_and_server_system_software	3.5(9)	3.5(9).x

Vulnerability Database

290,206

CVE-2005-4825