The Downloadable RADIUS ACLs feature in Cisco PIX and VPN 3000 concentrators, when creating an ACL on the Cisco Secure Access Control Server (CS ACS), generates a random internal name for an ACL that is also used as a hidden user name and password, which allows remote malicious users to gain privileges by sniffing the username from the cleartext portion of a RADIUS session, then using the password to log in to another device that uses CS ACS.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cisco vpn_3001_concentrator |
||
cisco vpn_3015_concentrator |
||
cisco vpn_3020_concentrator |
||
cisco vpn_3030_concentator |
||
cisco vpn_3060_concentrator |
||
cisco vpn_3080_concentrator |
||
cisco adaptive_security_appliance_software 7.0 |
||
cisco adaptive_security_appliance_software 7.0\\(4\\) |
||
cisco adaptive_security_appliance_software 7.0.1.4 |
||
cisco adaptive_security_appliance_software 7.0.4.3 |
||
cisco vpn_3000_concentrator_series_software 2.0 |
||
cisco vpn_3000_concentrator_series_software 2.5.2.a |
||
cisco vpn_3000_concentrator_series_software 2.5.2.b |
||
cisco vpn_3000_concentrator_series_software 2.5.2.c |
||
cisco vpn_3000_concentrator_series_software 2.5.2.d |
||
cisco vpn_3000_concentrator_series_software 2.5.2.f |
||
cisco vpn_3000_concentrator_series_software 3.0 |
||
cisco vpn_3000_concentrator_series_software 3.0.3.a |
||
cisco vpn_3000_concentrator_series_software 3.0.3.b |
||
cisco vpn_3000_concentrator_series_software 3.0.4 |
||
cisco vpn_3000_concentrator_series_software 3.1 |
||
cisco vpn_3000_concentrator_series_software 3.1\\(rel\\) |
||
cisco vpn_3000_concentrator_series_software 3.1.1 |
||
cisco vpn_3000_concentrator_series_software 3.1.2 |
||
cisco vpn_3000_concentrator_series_software 3.1.4 |
||
cisco vpn_3000_concentrator_series_software 3.5\\(rel\\) |
||
cisco vpn_3000_concentrator_series_software 3.5.1 |
||
cisco vpn_3000_concentrator_series_software 3.5.2 |
||
cisco vpn_3000_concentrator_series_software 3.5.3 |
||
cisco vpn_3000_concentrator_series_software 3.5.4 |
||
cisco vpn_3000_concentrator_series_software 3.5.5 |
||
cisco vpn_3000_concentrator_series_software 3.6 |
||
cisco vpn_3000_concentrator_series_software 3.6.1 |
||
cisco vpn_3000_concentrator_series_software 3.6.3 |
||
cisco vpn_3000_concentrator_series_software 3.6.5 |
||
cisco vpn_3000_concentrator_series_software 3.6.7 |
||
cisco vpn_3000_concentrator_series_software 3.6.7.a |
||
cisco vpn_3000_concentrator_series_software 3.6.7.b |
||
cisco vpn_3000_concentrator_series_software 3.6.7.c |
||
cisco vpn_3000_concentrator_series_software 3.6.7.d |
||
cisco vpn_3000_concentrator_series_software 3.6.7.f |
||
cisco vpn_3000_concentrator_series_software 3.6.7d |
||
cisco vpn_3000_concentrator_series_software 4.0 |
||
cisco vpn_3000_concentrator_series_software 4.0.1 |
||
cisco vpn_3000_concentrator_series_software 4.0.2 |
||
cisco vpn_3000_concentrator_series_software 4.0.5.b |
||
cisco vpn_3000_concentrator_series_software 4.1.5.b |
||
cisco vpn_3000_concentrator_series_software 4.1.7.a |
||
cisco vpn_3000_concentrator_series_software 4.1.7.b |
||
cisco vpn_3000_concentrator_series_software 4.7.1 |
||
cisco vpn_3000_concentrator_series_software 4.7.1.f |
||
cisco vpn_3005_concentrator_software 4.0.1 |
||
cisco vpn_3030_concentator 4.7.1 |
||
cisco vpn_3030_concentator 4.7.1.f |
||
cisco pix_asa_ids |
||
cisco pix_firewall 6.2.2_.111 |
||
cisco pix_firewall 6.2.3_\\(110\\) |
||
cisco pix_firewall 6.3.3_\\(133\\) |
||
cisco secure_access_control_server |
||
cisco secure_access_control_server 2.0 |
||
cisco secure_access_control_server 2.1 |
||
cisco secure_access_control_server 2.3 |
||
cisco secure_access_control_server 2.3.5.1 |
||
cisco secure_access_control_server 2.3.6.1 |
||
cisco secure_access_control_server 2.4 |
||
cisco secure_access_control_server 2.5 |
||
cisco secure_access_control_server 2.6 |
||
cisco secure_access_control_server 2.6.2 |
||
cisco secure_access_control_server 2.6.3 |
||
cisco secure_access_control_server 2.6.4 |
||
cisco secure_access_control_server 2.42 |
||
cisco secure_access_control_server 3.0 |
||
cisco secure_access_control_server 3.0.1 |
||
cisco secure_access_control_server 3.0.3 |
||
cisco secure_access_control_server 3.1 |
||
cisco secure_access_control_server 3.1.1 |
||
cisco secure_access_control_server 3.2 |
||
cisco secure_access_control_server 3.2\\(1\\) |
||
cisco secure_access_control_server 3.2\\(1.20\\) |
||
cisco secure_access_control_server 3.2\\(2\\) |
||
cisco secure_access_control_server 3.2\\(3\\) |
||
cisco secure_access_control_server 3.2.1 |
||
cisco secure_access_control_server 3.2.2 |
||
cisco secure_access_control_server 3.3 |
||
cisco secure_access_control_server 3.3\\(1\\) |
||
cisco secure_access_control_server 3.3.1 |
||
cisco secure_access_control_server 3.3.2 |
||
cisco vpn_3002_hardware_client |
||
cisco pix_firewall_501 |
||
cisco pix_firewall_506 |
||
cisco pix_firewall_515 |
||
cisco pix_firewall_515e |
||
cisco pix_firewall_520 |
||
cisco pix_firewall_525 |
||
cisco pix_firewall_535 |
||
cisco pix_firewall |
||
cisco pix_firewall 6.1.5\\(104\\) |
||
cisco pix_firewall_software 2.7 |
||
cisco pix_firewall_software 3.0 |
||
cisco pix_firewall_software 3.1 |
||
cisco pix_firewall_software 4.0 |
||
cisco pix_firewall_software 4.1\\(6\\) |
||
cisco pix_firewall_software 4.1\\(6b\\) |
||
cisco pix_firewall_software 4.2 |
||
cisco pix_firewall_software 4.2\\(1\\) |
||
cisco pix_firewall_software 4.2\\(2\\) |
||
cisco pix_firewall_software 4.2\\(5\\) |
||
cisco pix_firewall_software 4.3 |
||
cisco pix_firewall_software 4.4 |
||
cisco pix_firewall_software 4.4\\(4\\) |
||
cisco pix_firewall_software 4.4\\(7.202\\) |
||
cisco pix_firewall_software 4.4\\(8\\) |
||
cisco pix_firewall_software 5.0 |
||
cisco pix_firewall_software 5.1 |
||
cisco pix_firewall_software 5.1\\(4\\) |
||
cisco pix_firewall_software 5.1\\(4.206\\) |
||
cisco pix_firewall_software 5.2 |
||
cisco pix_firewall_software 5.2\\(1\\) |
||
cisco pix_firewall_software 5.2\\(2\\) |
||
cisco pix_firewall_software 5.2\\(3.210\\) |
||
cisco pix_firewall_software 5.2\\(5\\) |
||
cisco pix_firewall_software 5.2\\(6\\) |
||
cisco pix_firewall_software 5.2\\(7\\) |
||
cisco pix_firewall_software 5.2\\(9\\) |
||
cisco pix_firewall_software 5.3 |
||
cisco pix_firewall_software 5.3\\(1\\) |
||
cisco pix_firewall_software 5.3\\(1.200\\) |
||
cisco pix_firewall_software 5.3\\(2\\) |
||
cisco pix_firewall_software 5.3\\(3\\) |
||
cisco pix_firewall_software 6.0 |
||
cisco pix_firewall_software 6.0\\(1\\) |
||
cisco pix_firewall_software 6.0\\(2\\) |
||
cisco pix_firewall_software 6.0\\(3\\) |
||
cisco pix_firewall_software 6.0\\(4\\) |
||
cisco pix_firewall_software 6.0\\(4.101\\) |
||
cisco pix_firewall_software 6.1 |
||
cisco pix_firewall_software 6.1\\(1\\) |
||
cisco pix_firewall_software 6.1\\(2\\) |
||
cisco pix_firewall_software 6.1\\(3\\) |
||
cisco pix_firewall_software 6.1\\(4\\) |
||
cisco pix_firewall_software 6.1\\(5\\) |
||
cisco pix_firewall_software 6.2 |
||
cisco pix_firewall_software 6.2\\(1\\) |
||
cisco pix_firewall_software 6.2\\(2\\) |
||
cisco pix_firewall_software 6.2\\(3\\) |
||
cisco pix_firewall_software 6.2\\(3.100\\) |
||
cisco pix_firewall_software 6.3 |
||
cisco pix_firewall_software 6.3\\(1\\) |
||
cisco pix_firewall_software 6.3\\(2\\) |
||
cisco pix_firewall_software 6.3\\(3\\) |
||
cisco pix_firewall_software 6.3\\(3.102\\) |
||
cisco pix_firewall_software 6.3\\(3.109\\) |
||
cisco pix_firewall_software 6.3\\(5\\) |