Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Vuln-Dev
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Cisco NAC Appliance Agent Installation Bypass Vulnerability

from [Udo Sprotte] Network Security [Permanent Link]
Subject: Re: Cisco NAC Appliance Agent Installation Bypass Vulnerability
Date: Sat, 26 Aug 2006 21:24:18 +0200 
Am Samstag, 26. August 2006 02:23 schrieb Andreas Gal:

Cisco NAC Appliance Agent Installation Bypass Vulnerability
 Von: Andreas Gal <gal@uci.edu>
 An: bugtraq@securityfocus.com

Description:
Cisco NAC Appliance (formerly Cisco Clean Access) is an easily deployed
Network Admission Control (NAC) product that uses the network
infrastructure to enforce security policy compliance on all devices
seeking to access network computing resources. With NAC Appliance, network
administrators can authenticate, authorize, evaluate, and remediate wired,
wireless, and remote users and their machines prior to network access. It
identifies whether networked devices such as laptops, IP phones, or game
consoles are compliant with your network's security policies and repairs
any vulnerabilities before permitting access to the network.

You need the Cisco ACS 4.0.X for Cisco NAC, because it need the protocolls 
GAME and HCAP.  There is ab bug in Cisco ACS.  The RADIUS has a in the 
ODBC-Support with Oracle >= 9.X. So you can only configure the Radius Pofiles 
on the RADIUS and not on external Databses.
-- 
kind regarts

Udo Sprotte
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Possible Myspace Worm, mjw
Next by Date:  [Full-disclosure] [ GLSA 200608-27 ] Motor: Execution of arbitrary code, Raphael Marichez
Previous by Thread:  [Full-disclosure] Re: Cisco NAC Appliance Agent Installation Bypass Vulnerability, Joe Feise
Next by Thread:  Mambo/Joomla com_comprofiler Components <== v1.0 RC 2 Multiple Remote File Include Vulnerabilities, matdhule
Indexes:  [Date] [Thread] [Top] [All Lists]