Vulnerability CVE-2007-1068


Published: 2007-02-21   Modified: 2012-02-12

Description:
The (1) TTLS CHAP, (2) TTLS MSCHAP, (3) TTLS MSCHAPv2, (4) TTLS PAP, (5) MD5, (6) GTC, (7) LEAP, (8) PEAP MSCHAPv2, (9) PEAP GTC, and (10) FAST authentication methods in Cisco Secure Services Client (CSSC) 4.x, Trust Agent 1.x and 2.x, Cisco Security Agent (CSA) 5.0 and 5.1 (when a vulnerable Trust Agent has been deployed), and the Meetinghouse AEGIS SecureConnect Client store transmitted authentication credentials in plaintext log files, which allows local users to obtain sensitive information by reading these files, aka CSCsg34423.

Type:

CWE-255

(Credentials Management)

CVSS2 => (AV:L/AC:L/Au:N/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
7.2/10
10/10
3.9/10
Exploit range
Attack complexity
Authentication
Local
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete
Affected software
Meetinghouse -> Aegis secureconnect client 
Cisco -> Secure services client 
Cisco -> Security agent 
Cisco -> Trust agent 

 References:
http://www.cisco.com/warp/public/707/cisco-sa-20070221-supplicant.shtml
http://xforce.iss.net/xforce/xfdb/32626
http://www.vupen.com/english/advisories/2007/0690
http://www.securitytracker.com/id?1017684
http://www.securitytracker.com/id?1017683
http://www.securityfocus.com/bid/22648
http://secunia.com/advisories/24258
http://osvdb.org/33046

Copyright 2022, cxsecurity.com

 

Back to Top