28 matches found
Authentication flaw
The 1 TTLS CHAP, 2 TTLS MSCHAP, 3 TTLS MSCHAPv2, 4 TTLS PAP, 5 MD5, 6 GTC, 7 LEAP, 8 PEAP MSCHAPv2, 9 PEAP GTC, and 10 FAST authentication methods in Cisco Secure Services Client CSSC 4.x, Trust Agent 1.x and 2.x, Cisco Security Agent CSA 5.0 and 5.1 when a vulnerable Trust Agent has been deploye...
CVE-2007-1064
The CVE-2007-1064 issue affects Cisco Secure Services Client (CSSC) 4.x, Trust Agent 1.x/2.x, Cisco Security Agent (CSA) 5.0/5.1 (when a vulnerable Trust Agent is deployed), and the Meetinghouse AEGIS SecureConnect Client. The vulnerability arises because privileges are not dropped when invoking ...
CVE-2007-1068
The 1 TTLS CHAP, 2 TTLS MSCHAP, 3 TTLS MSCHAPv2, 4 TTLS PAP, 5 MD5, 6 GTC, 7 LEAP, 8 PEAP MSCHAPv2, 9 PEAP GTC, and 10 FAST authentication methods in Cisco Secure Services Client CSSC 4.x, Trust Agent 1.x and 2.x, Cisco Security Agent CSA 5.0 and 5.1 when a vulnerable Trust Agent has been deploye...
CVE-2007-1066
The CVE-2007-1066 issue affects Cisco Secure Services Client (CSSC) 4.x, Trust Agent 1.x/2.x, Cisco Security Agent (CSA) 5.0/5.1 when a vulnerable Trust Agent is deployed, and the Meetinghouse AEGIS SecureConnect Client. The root cause is an insecure default Discretionary Access Control List (DAC...
CVE-2007-1064
Cisco Secure Services Client CSSC 4.x, Trust Agent 1.x and 2.x, Cisco Security Agent CSA 5.0 and 5.1 when a vulnerable Trust Agent has been deployed, and the Meetinghouse AEGIS SecureConnect Client do not drop privileges when the help facility in the supplicant GUI is invoked, which allows local...
CVE-2007-1065
Cisco Secure Services Client CSSC 4.x, Trust Agent 1.x and 2.x, Cisco Security Agent CSA 5.0 and 5.1 when a vulnerable Trust Agent has been deployed, and the Meetinghouse AEGIS SecureConnect Client allows local users to gain SYSTEM privileges via unspecified vectors in the supplicant, aka...
CVE-2007-1065
CVE-2007-1065 affects Cisco Secure Services Client (CSSC) 4.x, Trust Agent 1.x/2.x, Cisco Security Agent (CSA) 5.0/5.1 (when a vulnerable Trust Agent is deployed), and Meetinghouse AEGIS SecureConnect Client. The issue is a local privilege escalation to SYSTEM via unspecified vectors in the 802.1...
Cisco Security Advisory: Multiple Vulnerabilities in 802.1X Supplicant
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Multiple Vulnerabilities in 802.1X Supplicant Advisory ID: cisco-sa-20070221-supplicant http://www.cisco.com/warp/public/707/cisco-sa-20070221-supplicant.shtml Revision 1.0 For Public Release 2007 February 21 1600 UTC GMT -...