Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-4985

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2012-4985
Last Modified 21 Aug 2013 11:59:19
Published 05 Dec 2012 06:57:15
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2012-4985

Summary

The Forescout CounterACT NAC device 6.3.4.1 does not block ARP and ICMP traffic from unrecognized clients, which allows remote attackers to conduct ARP poisoning attacks via crafted packets.

Vulnerable Systems

Application

  • Forescout Counteract 6.3.4.10


References

MISC - http://www.reactionpenetrationtesting.co.uk/forescout-nac-icmp-arp.html

BID - 56689

XF - forescout-security-bypass(80284)

OSVDB - 87895


Last Updated: 27 May 2016 11:01:56