CVE-2007-3184

Name of the Vulnerable Software and Affected Versions: Cisco Trust Agent (CTA) versions prior to 2.1.104.0

Description: The issue allows attackers with physical access to bypass authentication and modify System Preferences, including passwords, by invoking the Apple Menu when the Access Control Server (ACS) produces a user notification message after posture validation.

Recommendations: For versions prior to 2.1.104.0, update to version 2.1.104.0 or later to resolve the issue. As a temporary workaround, consider restricting physical access to devices running the affected software until a patch is applied.