Cisco Trust Agent (CTA) before 2.1.104.0, when running on MacOS X, allows attackers with physical access to bypass authentication and modify System Preferences, including passwords, by invoking the Apple Menu when the Access Control Server (ACS) produces a user notification message after posture validation.
References
Link | Resource |
---|---|
http://secunia.com/advisories/25598 | Third Party Advisory |
http://securityreason.com/securityalert/2796 | Exploit Third Party Advisory |
http://www.cisco.com/en/US/products/products_security_response09186a008085d645.html | Vendor Advisory |
http://www.osvdb.org/35340 | Broken Link |
http://www.securityfocus.com/archive/1/471041/100/0/threaded | Third Party Advisory VDB Entry |
http://www.securityfocus.com/bid/24415 | Patch Third Party Advisory VDB Entry |
http://www.securitytracker.com/id?1018217 | Third Party Advisory VDB Entry |
http://www.vupen.com/english/advisories/2007/2140 | Third Party Advisory |
https://exchange.xforce.ibmcloud.com/vulnerabilities/34807 | Third Party Advisory VDB Entry |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2007-06-12T21:00:00
Updated: 2018-10-16T14:57:01
Reserved: 2007-06-12T00:00:00
Link: CVE-2007-3184
JSON object: View
NVD Information
Status : Analyzed
Published: 2007-06-12T21:30:00.000
Modified: 2018-10-19T19:03:56.600
Link: CVE-2007-3184
JSON object: View
Redhat Information
No data.
CWE