CVE-2006-4430

Severity

50%

Complexity

99%

Confidentiality

48%

The Cisco Network Admission Control (NAC) 3.6.4.1 and earlier allows remote attackers to prevent installation of the Cisco Clean Access (CCA) Agent and bypass local and remote protection mechanisms by modifying (1) the HTTP User-Agent header or (2) the behavior of the TCP/IP stack. NOTE: the vendor has disputed the severity of this issue, stating that users cannot bypass authentication mechanisms.

The Cisco Network Admission Control (NAC) 3.6.4.1 and earlier allows remote attackers to prevent installation of the Cisco Clean Access (CCA) Agent and bypass local and remote protection mechanisms by modifying (1) the HTTP User-Agent header or (2) the behavior of the TCP/IP stack. NOTE: the vendor has disputed the severity of this issue, stating that users cannot bypass authentication mechanisms.

CVSS 2.0 Base Score 5. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:N/I:P/A:N).

Overview

Type

Cisco Network Admission Control (NAC) Manager and Server System Software

First reported 18 years ago

2006-08-29 00:04:00

Last updated 6 years ago

2018-10-30 16:26:00

Affected Software

Cisco Network Admission Control (NAC) Manager and Server System Software 3.3

3.3

Cisco Network Admission Control (NAC) Manager and Server System Software 3.3.1

3.3.1

Cisco Network Admission Control (NAC) Manager and Server System Software 3.3.2

3.3.2

Cisco Network Admission Control (NAC) Manager and Server System Software 3.3.3

3.3.3

Cisco Network Admission Control (NAC) Manager and Server System Software 3.3.4

3.3.4

Cisco Network Admission Control (NAC) Manager and Server System Software 3.3.5

3.3.5

Cisco Network Admission Control (NAC) Manager and Server System Software 3.3.6

3.3.6

Cisco Network Admission Control (NAC) Manager and Server System Software 3.3.7

3.3.7

Cisco Network Admission Control (NAC) Manager and Server System Software 3.3.8

3.3.8

Cisco Network Admission Control (NAC) Manager and Server System Software 3.3.9

3.3.9

Cisco Network Admission Control (NAC) Manager and Server System Software 3.4

3.4

Cisco Network Admission Control (NAC) Manager and Server System Software 3.4.1

3.4.1

Cisco Network Admission Control (NAC) Manager and Server System Software 3.4.2

3.4.2

Cisco Network Admission Control (NAC) Manager and Server System Software 3.4.3

3.4.3

Cisco Network Admission Control (NAC) Manager and Server System Software 3.4.4

3.4.4

Cisco Network Admission Control (NAC) Manager and Server System Software 3.4.5

3.4.5

Cisco Network Admission Control (NAC) Manager and Server System Software 3.5

3.5

Cisco Network Admission Control (NAC) Manager and Server System Software 3.5(9)

3.5\(9\)

Cisco Network Admission Control (NAC) Manager and Server System Software 3.5.1

3.5.1

Cisco Network Admission Control (NAC) Manager and Server System Software 3.5.2

3.5.2

Cisco Network Admission Control (NAC) Manager and Server System Software 3.5.3

3.5.3

Cisco Network Admission Control (NAC) Manager and Server System Software 3.5.4

3.5.4

Cisco Network Admission Control (NAC) Manager and Server System Software 3.5.5

3.5.5

Cisco Network Admission Control (NAC) Manager and Server System Software 3.6.0.1

3.6.0.1

Cisco Network Admission Control (NAC) Manager and Server System Software 3.6.4.0.1

3.6.4.0.1

References

20050822 RE: Cisco Clean Access Agent (Perfigo) bypass

20060822 Response to BugTraq - Cisco Clean Access Agent (Perfigo) Bypass

20060826 NAC Agent Installation Bypass

20050819 Cisco Clean Access Agent (Perfigo) bypass

20060826 Cisco NAC Appliance Agent Installation Bypass Vulnerability

20060826 Re: Cisco NAC Appliance Agent Installation Bypass Vulnerability

20060829 Re: Cisco NAC Appliance Agent Installation Bypass Vulnerability

19726

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.