CVE-2007-3184
First published: Tue Jun 12 2007(Updated: )
Cisco Trust Agent (CTA) before 2.1.104.0, when running on MacOS X, allows attackers with physical access to bypass authentication and modify System Preferences, including passwords, by invoking the Apple Menu when the Access Control Server (ACS) produces a user notification message after posture validation.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Trust Agent | <2.1.104.0 | |
| Apple Mac OS X |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.cisco.com/en/US/products/products_security_response09186a008085d645.html
- http://www.securityfocus.com/bid/24415
- http://www.osvdb.org/35340
- http://www.securitytracker.com/id?1018217
- http://secunia.com/advisories/25598
- http://securityreason.com/securityalert/2796
- http://www.vupen.com/english/advisories/2007/2140
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34807
- http://www.securityfocus.com/archive/1/471041/100/0/threaded
- collector/nvd-historical
- collector/nvd-index
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/remedy
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/type
- agent/weakness
- vendor/cisco
- canonical/cisco trust agent
- vendor/apple
- canonical/apple mac os x