CVE-2011-3305

Directory traversal vulnerability in Cisco Network Admission Control (NAC) Manager 4.8.x allows remote attackers to read arbitrary files via crafted traffic to TCP port 443, aka Bug ID CSCtq10755.

CVSS v2.0 7.8 HIGH

7.8^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:L/Au:N/C:C/I:N/A:N

Exploitability : 10.0 / Impact : 6.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
http://osvdb.org/76080
http://secunia.com/advisories/46309
http://www.cisco.com/warp/public/707/cisco-sa-20111005-nac.shtml	Vendor Advisory
http://www.securityfocus.com/bid/49954
http://www.securitytracker.com/id?1026142
https://exchange.xforce.ibmcloud.com/vulnerabilities/70335

Configurations

Configuration 1 (hide)

AND

OR	cpe:2.3:a:cisco:nac_manager:4.8:::::::*
	cpe:2.3:a:cisco:nac_manager:4.8\(1\):::::::*
	cpe:2.3:a:cisco:nac_manager:4.8\(2\):::::::*

cpe:2.3:h:cisco:nac_appliance:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2011-10-06 10:55

Updated : 2024-02-04 17:54

NVD link : CVE-2011-3305

Mitre link : CVE-2011-3305

CVE.ORG link : CVE-2011-3305

JSON object : View

Products Affected

cisco

nac_appliance
nac_manager

CWE

CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

{"id": "CVE-2011-3305", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:C/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 6.9, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2011-10-06T10:55:05.723", "references": [{"url": "http://osvdb.org/76080", "source": "ykramarz@cisco.com"}, {"url": "http://secunia.com/advisories/46309", "source": "ykramarz@cisco.com"}, {"url": "http://www.cisco.com/warp/public/707/cisco-sa-20111005-nac.shtml", "tags": ["Vendor Advisory"], "source": "ykramarz@cisco.com"}, {"url": "http://www.securityfocus.com/bid/49954", "source": "ykramarz@cisco.com"}, {"url": "http://www.securitytracker.com/id?1026142", "source": "ykramarz@cisco.com"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/70335", "source": "ykramarz@cisco.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-22"}]}], "descriptions": [{"lang": "en", "value": "Directory traversal vulnerability in Cisco Network Admission Control (NAC) Manager 4.8.x allows remote attackers to read arbitrary files via crafted traffic to TCP port 443, aka Bug ID CSCtq10755."}, {"lang": "es", "value": "Vulnerabilidad de salto de directorio en Cisco Network Admisi\u00f3n Control (NAC) Manager v4.8.x permite a atacantes remotos leer archivos de su elecci\u00f3n a trav\u00e9s de tr\u00e1fico manipulado para el puerto TCP 443, tambi\u00e9n conocido como Bug ID CSCtq10755."}], "lastModified": "2017-08-29T01:30:09.770", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:cisco:nac_manager:4.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "462272D0-56D4-4B6E-9391-0E0F8E6F9EC7"}, {"criteria": "cpe:2.3:a:cisco:nac_manager:4.8\\(1\\):*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D60ABFAD-5BEB-43E1-A55C-35973180B59D"}, {"criteria": "cpe:2.3:a:cisco:nac_manager:4.8\\(2\\):*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0884046A-1A4C-41FD-9898-D0906401AD1D"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:cisco:nac_appliance:*:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E4FBD568-9A85-48B0-8E34-6AE13E71F6BC"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "ykramarz@cisco.com"}