Sign-up

ID

VAR-200702-0466


CVE

CVE-2007-1065


TITLE

CSSC In products such as SYSTEM Privileged vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2007-001600

DESCRIPTION

Cisco Secure Services Client (CSSC) 4.x, Trust Agent 1.x and 2.x, Cisco Security Agent (CSA) 5.0 and 5.1 (when a vulnerable Trust Agent has been deployed), and the Meetinghouse AEGIS SecureConnect Client allows local users to gain SYSTEM privileges via unspecified vectors in the supplicant, aka CSCsf15836. Cisco CSSC and CTA products are prone to an information-disclosure issue and multiple privilege-escalation vulnerabilities because of design flaws in the software. Exploiting these issues allows local attackers to access sensitive information and to elevate their privileges on affected computers. Cisco Secure Services Client is a tool for deploying a single 802.1X-based authentication framework across multiple Cisco devices. Privilege Escalation+-------------------- * An unprivileged user logged into the computer can launch arbitrary programs on the system, running with SYSTEM privileges from the requester application. This vulnerability is documented as Cisco Bug ID CSCsf15836. ---------------------------------------------------------------------- Secunia is proud to announce the availability of the Secunia Software Inspector. The Secunia Software Inspector is a free service that detects insecure versions of software that you may have installed in your system. When insecure versions are detected, the Secunia Software Inspector also provides thorough guidelines for updating the software to the latest secure version from the vendor. 1) Various design errors can be exploited to gain escalated privileges via e.g. the help functionality, when launching programs, by injecting threads, and when parsing commands. 2) When using various authentication methods, the user's password is stored in cleartext in the application log files. PROVIDED AND/OR DISCOVERED BY: Reported by the vendor. ORIGINAL ADVISORY: Cisco Systems: http://www.cisco.com/warp/public/707/cisco-sa-20070221-supplicant.shtml ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------

Trust: 2.07

sources: NVD: CVE-2007-1065 // JVNDB: JVNDB-2007-001600 // BID: 22648 // VULHUB: VHN-24427 // PACKETSTORM: 54559

AFFECTED PRODUCTS

vendor:ciscomodel:trust agentscope:eqversion:2.0

Trust: 1.9

vendor:ciscomodel:trust agentscope:eqversion:1.0

Trust: 1.9

vendor:ciscomodel:security agentscope:eqversion:5.1

Trust: 1.9

vendor:ciscomodel:security agentscope:eqversion:5.0

Trust: 1.9

vendor:ciscomodel:secure services clientscope:eqversion:4.0

Trust: 1.9

vendor:ciscomodel:secure services clientscope:eqversion:4.0.51

Trust: 1.6

vendor:ciscomodel:secure services clientscope:eqversion:4.0.5

Trust: 1.6

vendor:ciscomodel:trust agentscope:eqversion:2.0.1

Trust: 1.6

vendor:ciscomodel:trust agentscope:eqversion:2.1

Trust: 1.6

vendor:meetinghousemodel:aegis secureconnect clientscope:eqversion:windows_platform

Trust: 1.0

vendor:meetinghousemodel:aegis secureconnect clientscope: - version: -

Trust: 0.8

vendor:ciscomodel:security agentscope:eqversion:5.0 and 5.1

Trust: 0.8

vendor:ciscomodel:secure services clientscope:eqversion:4.x

Trust: 0.8

vendor:ciscomodel:trust agentscope:eqversion:1.x and 2.x

Trust: 0.8

vendor:ciscomodel:meetinghouse aegis secureconnect clientscope:eqversion:0

Trust: 0.3

sources: BID: 22648 // JVNDB: JVNDB-2007-001600 // CNNVD: CNNVD-200702-410 // NVD: CVE-2007-1065

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2007-1065
value: MEDIUM

Trust: 1.0

NVD: CVE-2007-1065
value: MEDIUM

Trust: 0.8

CNNVD: CNNVD-200702-410
value: MEDIUM

Trust: 0.6

VULHUB: VHN-24427
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2007-1065
severity: MEDIUM
baseScore: 6.8
vectorString: AV:L/AC:L/AU:S/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 3.1
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-24427
severity: MEDIUM
baseScore: 6.8
vectorString: AV:L/AC:L/AU:S/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 3.1
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-24427 // JVNDB: JVNDB-2007-001600 // CNNVD: CNNVD-200702-410 // NVD: CVE-2007-1065

PROBLEMTYPE DATA

problemtype:NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2007-1065

THREAT TYPE

local

Trust: 1.0

sources: BID: 22648 // PACKETSTORM: 54559 // CNNVD: CNNVD-200702-410

TYPE

Design Error

Trust: 0.9

sources: BID: 22648 // CNNVD: CNNVD-200702-410

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2007-001600

PATCH
title:cisco-sa-20070221-supplicanturl:http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20070221-supplicant
Trust: 0.8
title:EOS and EOL Announcement for the Meetinghouse AEGIS Product Lineurl:http://www.cisco.com/en/US/prod/collateral/wireless/ps6442/ps7034/prod_end-of-life_notice0900aecd8056b4f2.html
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2007-001600

EXTERNAL IDS
db:NVDid:CVE-2007-1065
Trust: 2.8
db:BIDid:22648
Trust: 2.0
db:SECUNIAid:24258
Trust: 1.8
db:SECTRACKid:1017684
Trust: 1.7
db:SECTRACKid:1017683
Trust: 1.7
db:OSVDBid:33048
Trust: 1.7
db:VUPENid:ADV-2007-0690
Trust: 1.7
db:JVNDBid:JVNDB-2007-001600
Trust: 0.8
db:CNNVDid:CNNVD-200702-410
Trust: 0.7
db:CISCOid:20070221 MULTIPLE VULNERABILITIES IN 802.1X SUPPLICANT
Trust: 0.6
db:XFid:32622
Trust: 0.6
db:VULHUBid:VHN-24427
Trust: 0.1
db:PACKETSTORMid:54559
Trust: 0.1
sources:
            
            
            VULHUB: VHN-24427 // 
            
            
            
            BID: 22648 // 
            
            
            
            JVNDB: JVNDB-2007-001600 // 
            
            
            
            PACKETSTORM: 54559 // 
            
            
            
            CNNVD: CNNVD-200702-410 // 
            
            
            
            NVD: CVE-2007-1065

REFERENCES
url:http://www.cisco.com/warp/public/707/cisco-sa-20070221-supplicant.shtml
Trust: 2.1
url:http://www.securityfocus.com/bid/22648
Trust: 1.7
url:http://osvdb.org/33048
Trust: 1.7
url:http://www.securitytracker.com/id?1017683
Trust: 1.7
url:http://www.securitytracker.com/id?1017684
Trust: 1.7
url:http://secunia.com/advisories/24258
Trust: 1.7
url:http://www.vupen.com/english/advisories/2007/0690
Trust: 1.1
url:https://exchange.xforce.ibmcloud.com/vulnerabilities/32622
Trust: 1.1
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2007-1065
Trust: 0.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2007-1065
Trust: 0.8
url:http://xforce.iss.net/xforce/xfdb/32622
Trust: 0.6
url:http://www.frsirt.com/english/advisories/2007/0690
Trust: 0.6
url:http://www.cisco.com/en/us/products/ps6742/tsd_products_support_series_home.html
Trust: 0.3
url:/archive/1/460758
Trust: 0.3
url:http://secunia.com/secunia_security_advisories/
Trust: 0.1
url:http://secunia.com/software_inspector/
Trust: 0.1
url:http://secunia.com/product/13533/
Trust: 0.1
url:http://secunia.com/product/12423/
Trust: 0.1
url:http://secunia.com/product/13535/
Trust: 0.1
url:http://secunia.com/product/13534/
Trust: 0.1
url:http://secunia.com/advisories/24258/
Trust: 0.1
url:http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org
Trust: 0.1
url:http://secunia.com/about_secunia_advisories/
Trust: 0.1
sources:
            
            
            VULHUB: VHN-24427 // 
            
            
            
            BID: 22648 // 
            
            
            
            JVNDB: JVNDB-2007-001600 // 
            
            
            
            PACKETSTORM: 54559 // 
            
            
            
            CNNVD: CNNVD-200702-410 // 
            
            
            
            NVD: CVE-2007-1065

CREDITS
Cisco Security bulletin
Trust: 0.6
sources:
            
            
            CNNVD: CNNVD-200702-410

SOURCES
db:VULHUBid:VHN-24427
db:BIDid:22648
db:JVNDBid:JVNDB-2007-001600
db:PACKETSTORMid:54559
db:CNNVDid:CNNVD-200702-410
db:NVDid:CVE-2007-1065

LAST UPDATE DATE
2024-11-23T22:19:48.750000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-24427date:2017-07-29T00:00:00
db:BIDid:22648date:2016-07-06T14:40:00
db:JVNDBid:JVNDB-2007-001600date:2012-06-26T00:00:00
db:CNNVDid:CNNVD-200702-410date:2007-08-03T00:00:00
db:NVDid:CVE-2007-1065date:2024-11-21T00:27:25.427

SOURCES RELEASE DATE
db:VULHUBid:VHN-24427date:2007-02-22T00:00:00
db:BIDid:22648date:2007-02-21T00:00:00
db:JVNDBid:JVNDB-2007-001600date:2012-06-26T00:00:00
db:PACKETSTORMid:54559date:2007-02-23T02:32:16
db:CNNVDid:CNNVD-200702-410date:2007-02-21T00:00:00
db:NVDid:CVE-2007-1065date:2007-02-22T01:28:00