Vulnerability Description
Cisco Clean Access 3.5.5 and earlier on the Secure Smart Manager allows remote attackers to bypass authentication and cause a denial of service (disk consumption), or make unauthorized files accessible, by uploading files through requests to certain JSP scripts, a related issue to CVE-2005-4332.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Network Admission Control Manager And Server System Software | 3.5 |
References
- http://www.cisco.com/warp/public/707/cisco-response-20051221-CCA.shtmlPatchVendor Advisory
- http://www.osvdb.org/21959Vendor Advisory
- http://www.securityfocus.com/archive/1/419645/30/0/threadedVendor Advisory
- http://www.cisco.com/warp/public/707/cisco-response-20051221-CCA.shtmlPatchVendor Advisory
- http://www.osvdb.org/21959Vendor Advisory
- http://www.securityfocus.com/archive/1/419645/30/0/threadedVendor Advisory
FAQ
What is CVE-2005-4825?
CVE-2005-4825 is a vulnerability with a CVSS score of 5.7 (MEDIUM). Cisco Clean Access 3.5.5 and earlier on the Secure Smart Manager allows remote attackers to bypass authentication and cause a denial of service (disk consumption), or make unauthorized files accessibl...
How severe is CVE-2005-4825?
CVE-2005-4825 has been rated MEDIUM with a CVSS base score of 5.7/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-4825?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Network Admission Control Manager And Server System Software.