CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2007-0057

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1030%
EPSS Percentile23.30th
Published2007年1月4日
Last Modified2026年4月23日

Vulnerability Description

Cisco Clean Access (CCA) 3.6.x through 3.6.4.2 and 4.0.x through 4.0.3.2 does not properly configure or allow modification of a shared secret authentication key, which causes all devices to have the same shared sercet and allows remote attackers to gain unauthorized access.

Affected Platforms (CPE)

📦
Cisco

Network Admission Control Manager And Server System Software

>= 3.6.0.0 and <= 3.6.4.2
📦
Cisco

Network Admission Control Manager And Server System Software

>= 4.0.0.0 and < 4.0.3.2

References & Advisories

🔗 http://osvdb.org/32578
🔗 http://secunia.com/advisories/23617
🔗 http://securitytracker.com/id?1017465
🔗 http://www.cisco.com/warp/public/707/cisco-sa-20070103-CleanAccess.shtml
🔗 http://www.vupen.com/english/advisories/2007/0030
🔗 http://osvdb.org/32578
🔗 http://secunia.com/advisories/23617
🔗 http://securitytracker.com/id?1017465

相關漏洞威脅

CVE-2007-023610.0

Double free vulnerability in the _ATPsndrsp function in Apple Mac OS X 10.4.8, and possibly other versions, allows remote attacker...

CVE-2007-025410.0

Format string vulnerability in the errors_create_window function in errors.c in xine-ui allows attackers to execute arbitrary code...

CVE-2007-182210.0

Alcatel-Lucent Lucent Technologies voice mail systems allow remote attackers to retrieve or remove messages, or reconfigure mailbo...

CVE-2007-026110.0

snews.php in sNews 1.5.30 and earlier does not properly exit when authentication fails, which allows remote attackers to perform u...