NVD

Id
61905  
Name
CVE-2006-3226  
Description
Cisco Secure Access Control Server (ACS) 4.x for Windows uses the client"s IP address and the server"s port number to grant access to an HTTP server port for an administration session, which allows remote attackers to bypass authentication via various methods, aka "ACS Weak Session Management Vulnerability."  
Reject
 
CVSS Version
2  
CVSS Score
7.5  
Severity
High  
CVSS Base Score
7.5  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:P/I:P/A:P)  
Pub Date
2016-12-20  
Published
2006-06-26  
Modified Date
2011-03-07  
Seq
2006-3226  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
320451 61905 CVE-2006-3226 1157  View
320452 61905 CVE-2006-3226 1016369  View
320453 61905 CVE-2006-3226 20060623 Cisco Secure ACS Weak Session Management Vulnerability  View
320454 61905 CVE-2006-3226 20060623 Cisco Secure ACS Weak Session Management Vulnerability  View
320455 61905 CVE-2006-3226 20060623 Re: Cisco Secure ACS Weak Session Management Vulnerability  View
320456 61905 CVE-2006-3226 18621  View
320457 61905 CVE-2006-3226 ADV-2006-2524  View
320458 61905 CVE-2006-3226 cisco-acs-session-spoofing(27328)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
61775 JVNDB-2006-004041 Windows 用 Cisco Secure Access Control Server における認証を回避される脆弱性 Cisco Secure Access Control Server (ACS) には、認証を回避される脆弱性が存在します。 CVE-2006-3226 19328 CVE-2006-3226 61905 7.5 http://jvndb.jvn.jp/ja/contents/2006/JVNDB-2006-004041.html 2006-06-26 2014-03-11 View