PT-2005-5486 · Cisco · Cisco Clean Access

Published

2005-12-31

Updated

2018-10-30

CVE-2005-4825

CVSS v2.0

5.7

Medium

Vector

AV:A/AC:M/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Cisco Clean Access versions 3.5.5 and earlier

Description The issue allows remote attackers to bypass authentication, cause a denial of service due to disk consumption, or make unauthorized files accessible by uploading files through requests to certain JSP scripts.

Recommendations For Cisco Clean Access versions 3.5.5 and earlier, consider restricting access to the JSP scripts until a fix is available. As a temporary workaround, limit the ability to upload files to prevent unauthorized access and denial of service.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-4825

Affected Products

Cisco Clean Access

PT-2005-5486 · Cisco · Cisco Clean Access

CVE-2005-4825

Related Identifiers

Affected Products

References · 4