Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-1942

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2005-1942
Last Modified 10 Sep 2008 03:40:41
Published 10 Jun 2005 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-1942

Summary

Cisco switches that support 802.1x security allow remote attackers to bypass port security and gain access to the VLAN via spoofed Cisco Discovery Protocol (CDP) messages.

Vulnerable Systems


References

XF - cisco-callmanager-voice-gain-access(20939)

SECTRACK - 1014135

MISC - http://www.fishnetsecurity.com/csirt/disclosure/cisco/Cisco+802.1x+Advisory.pdf

CISCO - 20050608 Cisco 802.1x Voice-Enabled Interfaces Allow Anonymous Voice VLAN Access

BUGTRAQ - 20050610 Voice VLAN Access/Abuse Possible on Cisco voice-enabled, 802.1x-secured Interfaces Vulnerability Discovery: FishNet Security


Last Updated: 27 May 2016 10:40:20