CVE-2007-0057

Cisco Clean Access (CCA) 3.6.x through 3.6.4.2 and 4.0.x through 4.0.3.2 does not properly configure or allow modification of a shared secret authentication key, which causes all devices to have the same shared sercet and allows remote attackers to gain unauthorized access.

Published: Jan 4, 2007
Updated: Apr 13, 2023
CVE: CVE-2007-0057
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 10
AV:N/AC:L/Au:N/C:C/I:C/A:C

CWEs:

CWE-255

Affected Software
References

Software	From	Fixed in
cisco / network_admission_control_manager_and_server_system_software	3.6.0.0	3.6.4.2.x
cisco / network_admission_control_manager_and_server_system_software	4.0.0.0	4.0.3.2

http://osvdb.org/32578
http://secunia.com/advisories/23617
http://securitytracker.com/id?1017465
http://www.cisco.com/warp/public/707/cisco-sa-20070103-CleanAccess.shtml
http://www.vupen.com/english/advisories/2007/0030

Vulnerability Database

290,206

CVE-2007-0057