CVE-2011-0963 - Vulnerability Details - OpenCVE

The default configuration of the RADIUS authentication feature on the Cisco Network Admission Control (NAC) Guest Server with software before 2.0.3 allows remote attackers to bypass intended access restrictions and obtain network connectivity via unspecified vectors, aka Bug ID CSCtj66922.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

This CVE is not in the KEV list.

The EPSS score is 0.00255.

Key SSVC decision points have not yet been added.

Vendors	Products
Cisco	Nac Guest Server Nac Guest Server Software

Configuration 1 [-]

AND

cpe:2.3:h:cisco:nac_guest_server:*:*:*:*:*:*:*:*

OR	cpe:2.3:a:cisco:nac_guest_server_software::::::::
	cpe:2.3:a:cisco:nac_guest_server_software:1.0.0:::::::*
	cpe:2.3:a:cisco:nac_guest_server_software:1.1.0:::::::*
	cpe:2.3:a:cisco:nac_guest_server_software:1.1.1:::::::*
	cpe:2.3:a:cisco:nac_guest_server_software:1.1.2:::::::*
	cpe:2.3:a:cisco:nac_guest_server_software:1.1.3:::::::*
	cpe:2.3:a:cisco:nac_guest_server_software:2.0.0:::::::*
	cpe:2.3:a:cisco:nac_guest_server_software:2.0.1:::::::*

No data.

No data.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b74114.shtml
http://www.securitytracker.com/id?1025272

History

No history.

MITRE

Status: PUBLISHED

Assigner: cisco

Published: 2011-03-31T22:00:00

Updated: 2024-08-06T22:14:26.455Z

Reserved: 2011-02-10T00:00:00

Link: CVE-2011-0963

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2011-03-31T22:55:02.973

Modified: 2025-04-11T00:51:21.963

Link: CVE-2011-0963

Redhat

No data.

OpenCVE Enrichment

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2011-03-30T00:00:00", "descriptions": [{"lang": "en", "value": "The default configuration of the RADIUS authentication feature on the Cisco Network Admission Control (NAC) Guest Server with software before 2.0.3 allows remote attackers to bypass intended access restrictions and obtain network connectivity via unspecified vectors, aka Bug ID CSCtj66922."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2016-12-05T16:57:01", "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco"}, "references": [{"name": "1025272", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id?1025272"}, {"name": "20110330 Cisco Network Admission Control Guest Server System Software Authentication Bypass Vulnerability", "tags": ["vendor-advisory", "x_refsource_CISCO"], "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b74114.shtml"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "psirt@cisco.com", "ID": "CVE-2011-0963", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The default configuration of the RADIUS authentication feature on the Cisco Network Admission Control (NAC) Guest Server with software before 2.0.3 allows remote attackers to bypass intended access restrictions and obtain network connectivity via unspecified vectors, aka Bug ID CSCtj66922."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "1025272", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id?1025272"}, {"name": "20110330 Cisco Network Admission Control Guest Server System Software Authentication Bypass Vulnerability", "refsource": "CISCO", "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b74114.shtml"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T22:14:26.455Z"}, "title": "CVE Program Container", "references": [{"name": "1025272", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id?1025272"}, {"name": "20110330 Cisco Network Admission Control Guest Server System Software Authentication Bypass Vulnerability", "tags": ["vendor-advisory", "x_refsource_CISCO", "x_transferred"], "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b74114.shtml"}]}]}, "cveMetadata": {"assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "assignerShortName": "cisco", "cveId": "CVE-2011-0963", "datePublished": "2011-03-31T22:00:00", "dateReserved": "2011-02-10T00:00:00", "dateUpdated": "2024-08-06T22:14:26.455Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:cisco:nac_guest_server:*:*:*:*:*:*:*:*", "matchCriteriaId": "0948BDF8-94FA-4911-907A-6D0B1A820472", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:a:cisco:nac_guest_server_software:*:*:*:*:*:*:*:*", "matchCriteriaId": "495B5D55-0941-451B-998E-41E6FEC17E16", "versionEndIncluding": "2.0.2", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:nac_guest_server_software:1.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "AFC043FE-B7C8-416A-985D-18C2FC59E780", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:nac_guest_server_software:1.1.0:*:*:*:*:*:*:*", "matchCriteriaId": "5587EBF9-CB6E-4429-BC1A-E029657160E7", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:nac_guest_server_software:1.1.1:*:*:*:*:*:*:*", "matchCriteriaId": "7297C9B5-E37E-48A6-B5FB-87EEBF25EC63", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:nac_guest_server_software:1.1.2:*:*:*:*:*:*:*", "matchCriteriaId": "A9C63282-A4E2-4BC4-93B8-B2CBF3ABE4C8", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:nac_guest_server_software:1.1.3:*:*:*:*:*:*:*", "matchCriteriaId": "DAE1F91B-37A0-4992-AE23-1E0473243F3C", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:nac_guest_server_software:2.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "E06B4395-92AA-4DE3-B4B5-D48843BF850B", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:nac_guest_server_software:2.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "294DCA83-6F8F-4381-85DD-0C1FF66537A8", "vulnerable": true}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The default configuration of the RADIUS authentication feature on the Cisco Network Admission Control (NAC) Guest Server with software before 2.0.3 allows remote attackers to bypass intended access restrictions and obtain network connectivity via unspecified vectors, aka Bug ID CSCtj66922."}, {"lang": "es", "value": "La configuraci\u00f3n por defecto de la funcionalidad de autenticaci\u00f3n RADIUS en el Cisco Network Admission Control (NAC) Guest Server con software en versiones anteriores a 2.0.3 permite a atacantes remotos eludir las restricciones destinadas al acceso y obtener conectividad de red a trav\u00e9s de vectores no especificados, vulnerabilidad tambi\u00e9n conocida como Bug ID CSCtj66922."}], "id": "CVE-2011-0963", "lastModified": "2025-04-11T00:51:21.963", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2011-03-31T22:55:02.973", "references": [{"source": "psirt@cisco.com", "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b74114.shtml"}, {"source": "psirt@cisco.com", "url": "http://www.securitytracker.com/id?1025272"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b74114.shtml"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securitytracker.com/id?1025272"}], "sourceIdentifier": "psirt@cisco.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-264"}], "source": "nvd@nist.gov", "type": "Primary"}]}