- Is the Cisco MARS mission going to abort?
- First iPhone worm spreads Rick Astley wallpaper
- 10 stunning 3D buildings made with Google SketchUp
- Open source software ready for big business
- Four reasons to buy (and one reason to avoid) the Droid
Cisco issued an advisory to customers Wednesday about two serious vulnerabilities in its Cisco Clean Access software, a network access control product.
The two issues could allow remote attackers to gain control of the devices, or glean sensitive data from Clean Access customers that could be used to compromise the Clean Access Manager (CAM) product, the company said.
Cisco Clean Access (also known as the Cisco NAC Appliance) is a network access control hardware device that allows companies to screen the machines of users who are attempting to connect to a network over wired, wireless, or remote VPN connections. Clean Access compares systems to established security policies and flag known violations, such as software vulnerabilities or inadequate operating system or antivirus software patch levels before network access is granted. Machines that aren't compliant can be denied access or quarantined.
According to Cisco Security Advisory 72379 , a problem with initial setup of the Cisco Clean Access Manager (CAM) and Clean Access Server (CAS) product makes it impossible to properly configure a "shared secret" that is used to authentication communications between the two devices. The result is that the shared secret cannot be properly set or changed and is identical on all CAM and CAS devices, Cisco said.
Remote hackers could take advantage of the vulnerability by establishing a TCP connection to the CAS device, Cisco said.
A second vulnerability in the Clean Access Manager allows malicious users to view backups of the CAM database without first authenticating on the CAM device. A flaw in the way database backups are stored makes it possible to guess the backup file name and download it without authenticating, Cisco said.
Backup files contain sensitive information about the Clean Access installation that could be used to compromise the CAM, including CAM user passwords stored in clear text, Cisco said.
Rss FeedRss Feed
The Leader in Network Knowledge
Comments (2)
Cisco warns of vulnerabilities in NAC productBy Anonymous on January 4, 2007, 7:19 pmSo did they have a solution for these issues?? Re: This article.
Reply | Read entire comment
Cisco VulnerabilitesBy Anonymous on November 21, 2008, 5:28 pmCisco advisory: http://www.cisco.com/warp/public/707/cisco-sa-20070103-CleanAccess.shtml
Reply | Read entire comment
View all comments