Cisco Security Agent Management Center (CSAMC) 5.1 before 5.1.0.79 does not properly handle certain LDAP error messages, which allows remote attackers to bypass authentication requirements via an empty password when using an external LDAP server.
secunia.com/advisories/22684
securitytracker.com/id?1017148
www.cisco.com/en/US/products/products_security_advisory09186a00807726f7.shtml
www.kb.cert.org/vuls/id/778648
www.osvdb.org/30169
www.securityfocus.com/bid/20852
www.vupen.com/english/advisories/2006/4308
exchange.xforce.ibmcloud.com/vulnerabilities/29955