CVE-2007-0057 | Vulnerability Database | Aqua Security

Cisco Clean Access (CCA) 3.6.x through 3.6.4.2 and 4.0.x through 4.0.3.2 does not properly configure or allow modification of a shared secret authentication key, which causes all devices to have the same shared sercet and allows remote attackers to gain unauthorized access.

Affected Software

Name	Vendor	Start Version	End Version
Network_admission_control_manager_and_server_system_software	Cisco	3.6.0.0 (including)	3.6.4.2 (including)
Network_admission_control_manager_and_server_system_software	Cisco	4.0.0.0 (including)	4.0.3.2 (excluding)

References

http://osvdb.org/32578
http://secunia.com/advisories/23617
http://securitytracker.com/id?1017465
http://www.cisco.com/warp/public/707/cisco-sa-20070103-CleanAccess.shtml
http://www.vupen.com/english/advisories/2007/0030
http://osvdb.org/32578
http://secunia.com/advisories/23617
http://securitytracker.com/id?1017465
http://www.cisco.com/warp/public/707/cisco-sa-20070103-CleanAccess.shtml
http://www.vupen.com/english/advisories/2007/0030

NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-0057
CWE	https://cwe.mitre.org/data/definitions/255.html