Lucene search
HistoryDec 22, 2005 - 11:03 a.m.
CVE-2005-4499
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7
Confidence
Low
EPSS
0.013
Percentile
86.1%
The Downloadable RADIUS ACLs feature in Cisco PIX and VPN 3000 concentrators, when creating an ACL on the Cisco Secure Access Control Server (CS ACS), generates a random internal name for an ACL that is also used as a hidden user name and password, which allows remote attackers to gain privileges by sniffing the username from the cleartext portion of a RADIUS session, then using the password to log in to another device that uses CS ACS.
Affected configurations
Node
ciscovpn_3001_concentrator
ORciscovpn_3015_concentrator
ORciscovpn_3020_concentrator
ORciscovpn_3030_concentator
ORciscovpn_3060_concentrator
ORciscovpn_3080_concentrator
ORciscoadaptive_security_appliance_softwareMatch7.0
ORciscoadaptive_security_appliance_softwareMatch7.0\(4\)
ORciscoadaptive_security_appliance_softwareMatch7.0.1.4
ORciscoadaptive_security_appliance_softwareMatch7.0.4.3
ORciscovpn_3000_concentrator_series_softwareMatch2.0
ORciscovpn_3000_concentrator_series_softwareMatch2.5.2.a
ORciscovpn_3000_concentrator_series_softwareMatch2.5.2.b
ORciscovpn_3000_concentrator_series_softwareMatch2.5.2.c
ORciscovpn_3000_concentrator_series_softwareMatch2.5.2.d
ORciscovpn_3000_concentrator_series_softwareMatch2.5.2.f
ORciscovpn_3000_concentrator_series_softwareMatch3.0
ORciscovpn_3000_concentrator_series_softwareMatch3.0.3.a
ORciscovpn_3000_concentrator_series_softwareMatch3.0.3.b
ORciscovpn_3000_concentrator_series_softwareMatch3.0.4
ORciscovpn_3000_concentrator_series_softwareMatch3.1
ORciscovpn_3000_concentrator_series_softwareMatch3.1\(rel\)
ORciscovpn_3000_concentrator_series_softwareMatch3.1.1
ORciscovpn_3000_concentrator_series_softwareMatch3.1.2
ORciscovpn_3000_concentrator_series_softwareMatch3.1.4
ORciscovpn_3000_concentrator_series_softwareMatch3.5\(rel\)
ORciscovpn_3000_concentrator_series_softwareMatch3.5.1
ORciscovpn_3000_concentrator_series_softwareMatch3.5.2
ORciscovpn_3000_concentrator_series_softwareMatch3.5.3
ORciscovpn_3000_concentrator_series_softwareMatch3.5.4
ORciscovpn_3000_concentrator_series_softwareMatch3.5.5
ORciscovpn_3000_concentrator_series_softwareMatch3.6
ORciscovpn_3000_concentrator_series_softwareMatch3.6.1
ORciscovpn_3000_concentrator_series_softwareMatch3.6.3
ORciscovpn_3000_concentrator_series_softwareMatch3.6.5
ORciscovpn_3000_concentrator_series_softwareMatch3.6.7
ORciscovpn_3000_concentrator_series_softwareMatch3.6.7.a
ORciscovpn_3000_concentrator_series_softwareMatch3.6.7.b
ORciscovpn_3000_concentrator_series_softwareMatch3.6.7.c
ORciscovpn_3000_concentrator_series_softwareMatch3.6.7.d
ORciscovpn_3000_concentrator_series_softwareMatch3.6.7.f
ORciscovpn_3000_concentrator_series_softwareMatch3.6.7d
ORciscovpn_3000_concentrator_series_softwareMatch4.0
ORciscovpn_3000_concentrator_series_softwareMatch4.0.1
ORciscovpn_3000_concentrator_series_softwareMatch4.0.2
ORciscovpn_3000_concentrator_series_softwareMatch4.0.5.b
ORciscovpn_3000_concentrator_series_softwareMatch4.1.5.b
ORciscovpn_3000_concentrator_series_softwareMatch4.1.7.a
ORciscovpn_3000_concentrator_series_softwareMatch4.1.7.b
ORciscovpn_3000_concentrator_series_softwareMatch4.7.1
ORciscovpn_3000_concentrator_series_softwareMatch4.7.1.f
ORciscovpn_3005_concentrator_softwareMatch4.0.1
ORciscovpn_3030_concentatorMatch4.7.1
ORciscovpn_3030_concentatorMatch4.7.1.f
ciscopix_asa_ids
ORciscopix_firewallMatch6.2.2_.111
ORciscopix_firewallMatch6.2.3_\(110\)
ORciscopix_firewallMatch6.3.3_\(133\)
ORciscosecure_access_control_server
ORciscosecure_access_control_serverMatch2.0unix
ORciscosecure_access_control_serverMatch2.1windows_nt
ORciscosecure_access_control_serverMatch2.3unix
ORciscosecure_access_control_serverMatch2.3windows_nt
ORciscosecure_access_control_serverMatch2.3.5.1unix
ORciscosecure_access_control_serverMatch2.3.6.1unix
ORciscosecure_access_control_serverMatch2.4windows_nt
ORciscosecure_access_control_serverMatch2.5windows_nt
ORciscosecure_access_control_serverMatch2.6windows_nt
ORciscosecure_access_control_serverMatch2.6.2windows_nt
ORciscosecure_access_control_serverMatch2.6.3windows_nt
ORciscosecure_access_control_serverMatch2.6.4windows_nt
ORciscosecure_access_control_serverMatch2.42windows_nt
ORciscosecure_access_control_serverMatch3.0
ORciscosecure_access_control_serverMatch3.0windows_nt
ORciscosecure_access_control_serverMatch3.0.1windows_nt
ORciscosecure_access_control_serverMatch3.0.3windows_nt
ORciscosecure_access_control_serverMatch3.1
ORciscosecure_access_control_serverMatch3.1.1windows_nt
ORciscosecure_access_control_serverMatch3.2
ORciscosecure_access_control_serverMatch3.2windows_server
ORciscosecure_access_control_serverMatch3.2\(1\)
ORciscosecure_access_control_serverMatch3.2\(1.20\)
ORciscosecure_access_control_serverMatch3.2\(2\)
ORciscosecure_access_control_serverMatch3.2\(3\)
ORciscosecure_access_control_serverMatch3.2.1
ORciscosecure_access_control_serverMatch3.2.2
ORciscosecure_access_control_serverMatch3.3
ORciscosecure_access_control_serverMatch3.3\(1\)
ORciscosecure_access_control_serverMatch3.3.1
ORciscosecure_access_control_serverMatch3.3.2
ORciscovpn_3002_hardware_client
ORciscopix_firewall_501
ORciscopix_firewall_506
ORciscopix_firewall_515
ORciscopix_firewall_515e
ORciscopix_firewall_520
ORciscopix_firewall_525
ORciscopix_firewall_535
ORciscopix_firewall
ORciscopix_firewall_softwareMatch2.7
ORciscopix_firewall_softwareMatch3.0
ORciscopix_firewall_softwareMatch3.1
ORciscopix_firewall_softwareMatch4.0
ORciscopix_firewall_softwareMatch4.1\(6\)
ORciscopix_firewall_softwareMatch4.1\(6b\)
ORciscopix_firewall_softwareMatch4.2
ORciscopix_firewall_softwareMatch4.2\(1\)
ORciscopix_firewall_softwareMatch4.2\(2\)
ORciscopix_firewall_softwareMatch4.2\(5\)
ORciscopix_firewall_softwareMatch4.3
ORciscopix_firewall_softwareMatch4.4
ORciscopix_firewall_softwareMatch4.4\(4\)
ORciscopix_firewall_softwareMatch4.4\(7.202\)
ORciscopix_firewall_softwareMatch4.4\(8\)
ORciscopix_firewall_softwareMatch5.0
ORciscopix_firewall_softwareMatch5.1
ORciscopix_firewall_softwareMatch5.1\(4\)
ORciscopix_firewall_softwareMatch5.1\(4.206\)
ORciscopix_firewall_softwareMatch5.2
ORciscopix_firewall_softwareMatch5.2\(1\)
ORciscopix_firewall_softwareMatch5.2\(2\)
ORciscopix_firewall_softwareMatch5.2\(3.210\)
ORciscopix_firewall_softwareMatch5.2\(5\)
ORciscopix_firewall_softwareMatch5.2\(6\)
ORciscopix_firewall_softwareMatch5.2\(7\)
ORciscopix_firewall_softwareMatch5.2\(9\)
ORciscopix_firewall_softwareMatch5.3
ORciscopix_firewall_softwareMatch5.3\(1\)
ORciscopix_firewall_softwareMatch5.3\(1.200\)
ORciscopix_firewall_softwareMatch5.3\(2\)
ORciscopix_firewall_softwareMatch5.3\(3\)
ORciscopix_firewall_softwareMatch6.0
ORciscopix_firewall_softwareMatch6.0\(1\)
ORciscopix_firewall_softwareMatch6.0\(2\)
ORciscopix_firewall_softwareMatch6.0\(3\)
ORciscopix_firewall_softwareMatch6.0\(4\)
ORciscopix_firewall_softwareMatch6.0\(4.101\)
ORciscopix_firewall_softwareMatch6.1
ORciscopix_firewall_softwareMatch6.1\(1\)
ORciscopix_firewall_softwareMatch6.1\(2\)
ORciscopix_firewall_softwareMatch6.1\(3\)
ORciscopix_firewall_softwareMatch6.1\(4\)
ORciscopix_firewall_softwareMatch6.1\(5\)
ORciscopix_firewall_softwareMatch6.1.5\(104\)
ORciscopix_firewall_softwareMatch6.2
ORciscopix_firewall_softwareMatch6.2\(1\)
ORciscopix_firewall_softwareMatch6.2\(2\)
ORciscopix_firewall_softwareMatch6.2\(3\)
ORciscopix_firewall_softwareMatch6.2\(3.100\)
ORciscopix_firewall_softwareMatch6.3
ORciscopix_firewall_softwareMatch6.3\(1\)
ORciscopix_firewall_softwareMatch6.3\(2\)
ORciscopix_firewall_softwareMatch6.3\(3\)
ORciscopix_firewall_softwareMatch6.3\(3.102\)
ORciscopix_firewall_softwareMatch6.3\(3.109\)
ORciscopix_firewall_softwareMatch6.3\(5\)
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cisco | vpn_3001_concentrator | * | cpe:2.3:h:cisco:vpn_3001_concentrator:*:*:*:*:*:*:*:* |
| cisco | vpn_3015_concentrator | * | cpe:2.3:h:cisco:vpn_3015_concentrator:*:*:*:*:*:*:*:* |
| cisco | vpn_3020_concentrator | * | cpe:2.3:h:cisco:vpn_3020_concentrator:*:*:*:*:*:*:*:* |
| cisco | vpn_3030_concentator | * | cpe:2.3:h:cisco:vpn_3030_concentator:*:*:*:*:*:*:*:* |
| cisco | vpn_3060_concentrator | * | cpe:2.3:h:cisco:vpn_3060_concentrator:*:*:*:*:*:*:*:* |
| cisco | vpn_3080_concentrator | * | cpe:2.3:h:cisco:vpn_3080_concentrator:*:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 7.0 | cpe:2.3:o:cisco:adaptive_security_appliance_software:7.0:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 7.0(4) | cpe:2.3:o:cisco:adaptive_security_appliance_software:7.0\(4\):*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 7.0.1.4 | cpe:2.3:o:cisco:adaptive_security_appliance_software:7.0.1.4:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 7.0.4.3 | cpe:2.3:o:cisco:adaptive_security_appliance_software:7.0.4.3:*:*:*:*:*:*:* |
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7
Confidence
Low
EPSS
0.013
Percentile
86.1%
Related for NVD:CVE-2005-4499