CVE-2006-4981

2006-09-2601:43:00

mitre

www.cve.org

6.5 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

14.1%

JSON

Symantec Sygate NAC allows physically proximate attackers to bypass control methods and join a local network by selecting a forged MAC address associated with an exception rule that (1) permits all non-Windows devices or (2) whitelists certain sets of Organizationally Unique Identifiers (OUIs).

References

www.insightix.com/files/pdf/Bypassing_NAC_Solutions_Whitepaper.pdf

www.securityfocus.com/archive/1/446421/100/0/threaded