CVE-2007-0058: Infoleak
First published: Thu Jan 04 2007(Updated: )
Cisco Clean Access (CCA) 3.5.x through 3.5.9 and 3.6.x through 3.6.1.1 on the Clean Access Manager (CAM) allows remote attackers to bypass authentication and download arbitrary manual database backups by guessing the snapshot filename using brute force, then making a direct request for the file.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Network Admission Control Manager And Server System Software | >=3.5.0<=3.5.9 | |
| Cisco Network Admission Control Manager And Server System Software | >=3.6.0.0<=3.6.1.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-historical
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/references
- agent/last-modified-date
- agent/author
- agent/weakness
- agent/tags
- agent/description
- agent/event
- agent/first-publish-date
- agent/source
- vendor/cisco
- canonical/cisco network admission control manager and server system software
- version/cisco network admission control manager and server system software/3.5.0
- version/cisco network admission control manager and server system software/3.5.9
- version/cisco network admission control manager and server system software/3.6.0.0
- version/cisco network admission control manager and server system software/3.6.1.1