3 matches found
CVE-2008-1155
Cisco NAC Appliance is vulnerable to an information-disclosure flaw that lets remote attackers obtain the shared secret used by CAS/CAM by sniffing error-logs transmitted over the network. Affected: NAC Appliance versions 3.5.x; 3.6.x prior to 3.6.4.4; 4.0.x prior to 4.0.6; 4.1.x prior to 4.1.2. ...
CVE-2013-1124
The CVE-2013-1124 entry concerns the Cisco Network Admission Control (NAC) agent for macOS, which does not verify the X.509 certificate of an Identity Services Engine (ISE) server during SSL. This enables man-in-the-middle attackers to spoof ISE servers using an arbitrary certificate. Impact is d...
CVE-2006-4430
Cisco Network Admission Control (NAC) 3.6.4.1 and earlier is affected. The issue allows remote attackers to disrupt installation of the Cisco Clean Access (CCA) Agent and bypass protection mechanisms by either modifying the HTTP User-Agent header or altering TCP/IP stack behavior. The published n...