CVE-2006-0561
First published: Tue May 09 2006(Updated: )
Cisco Secure Access Control Server (ACS) 3.x for Windows stores ACS administrator passwords and the master key in the registry with insecure permissions, which allows local users and remote administrators to decrypt the passwords by using Microsoft's cryptographic API functions to obtain the plaintext version of the master key.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Secure Access Control Server | =3.2 | |
| Cisco Secure Access Control Server | =3.1.1 | |
| Cisco Secure Access Control Server | =3.0.1 | |
| Cisco Secure Access Control Server | =3.0.3 | |
| Cisco Secure Access Control Server | =3.3 | |
| Cisco Secure Access Control Server | =3.2 | |
| Cisco Secure Access Control Server | =3.1 | |
| Cisco Secure Access Control Server | =3.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.securityfocus.com/archive/1/433286/100/0/threaded
- http://www.securityfocus.com/archive/1/433301/100/0/threaded
- http://www.symantec.com/enterprise/research/SYMSA-2006-003.txt
- http://www.cisco.com/warp/public/707/cisco-sr-20060508-acs.shtml
- http://www.securityfocus.com/bid/16743
- http://securitytracker.com/id?1016042
- http://www.osvdb.org/25892
- http://www.vupen.com/english/advisories/2006/1741
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26307
Frequently Asked Questions
What is the severity of CVE-2006-0561?
CVE-2006-0561 is classified as a medium severity vulnerability.
How do I fix CVE-2006-0561?
To fix CVE-2006-0561, ensure that administrator passwords and master keys are stored with secure permissions and apply any available patches from Cisco.
Which versions of Cisco Secure Access Control Server are affected by CVE-2006-0561?
CVE-2006-0561 affects Cisco Secure Access Control Server versions 3.0, 3.0.1, 3.0.3, 3.1, 3.1.1, 3.2, and 3.3.
What type of access does CVE-2006-0561 allow an attacker?
CVE-2006-0561 allows local users and remote administrators to decrypt sensitive passwords due to insecure storage.
Is CVE-2006-0561 related to Windows permissions?
Yes, CVE-2006-0561 is related to insecure permissions in the Windows registry where Cisco Secure Access Control Server stores sensitive information.
- collector/nvd-historical
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/remedy
- agent/severity
- agent/weakness
- agent/references
- agent/last-modified-date
- agent/tags
- agent/author
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- vendor/cisco
- canonical/cisco secure access control server
- version/cisco secure access control server/3.2
- version/cisco secure access control server/3.1.1
- version/cisco secure access control server/3.0.1
- version/cisco secure access control server/3.0.3
- version/cisco secure access control server/3.3
- version/cisco secure access control server/3.1
- version/cisco secure access control server/3.0