CVE-2006-5660

Published: Nov 3, 2006Modified: Apr 23, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

Cisco Security Agent Management Center (CSAMC) 5.1 before 5.1.0.79 does not properly handle certain LDAP error messages, which allows remote attackers to bypass authentication requirements via an empty password when using an external LDAP server.

Affected (1)

Products: Cisco: Security Agent Management Center

Cisco

1 product

Security Agent Management Center

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Cisco Security Agent Management Center	Version 5.1

References (16)

http://secunia.com/advisories/22684

Source: cve@mitre.org

http://securitytracker.com/id?1017148

Source: cve@mitre.org

http://www.cisco.com/en/US/products/products_security_advisory09186a00807726f7.shtml

Source: cve@mitre.org

PatchVendor Advisory

http://www.kb.cert.org/vuls/id/778648

Source: cve@mitre.org

US Government Resource

http://www.osvdb.org/30169

Source: cve@mitre.org

http://www.securityfocus.com/bid/20852

Source: cve@mitre.org

Patch

http://www.vupen.com/english/advisories/2006/4308

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/29955

Source: cve@mitre.org

http://secunia.com/advisories/22684