PT-2005-5486 · Cisco · Cisco Clean Access

Publicado

2005-12-31

Atualizado

2018-10-30

CVE-2005-4825

CVSS v2.0

5.7

Média

Vetor

AV:A/AC:M/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Cisco Clean Access versions 3.5.5 and earlier

Description The issue allows remote attackers to bypass authentication, cause a denial of service due to disk consumption, or make unauthorized files accessible by uploading files through requests to certain JSP scripts.

Recommendations For Cisco Clean Access versions 3.5.5 and earlier, consider restricting access to the JSP scripts until a fix is available. As a temporary workaround, limit the ability to upload files to prevent unauthorized access and denial of service.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2005-4825

Produtos afetados

Cisco Clean Access

PT-2005-5486 · Cisco · Cisco Clean Access

CVE-2005-4825

Identificadores relacionados

Produtos afetados

Referências · 4