Details of VAR-201302-0386

ID

VAR-201302-0386

CVE

CVE-2013-1124

TITLE

Mac OS X Run on Cisco NAC In the agent ISE Vulnerability impersonating a server

Trust: 0.8

sources: JVNDB: JVNDB-2013-001707

DESCRIPTION

The Cisco Network Admission Control (NAC) agent on Mac OS X does not verify the X.509 certificate of an Identity Services Engine (ISE) server during an SSL session, which allows man-in-the-middle attackers to spoof ISE servers via an arbitrary certificate, aka Bug ID CSCub24309. The problem is Bug ID CSCub24309 It is a problem.Man-in-the-middle attacks (man-in-the-middle attack) Through any certificate ISE There is a possibility of impersonating a server. Cisco Network Admission Control is prone to a security-bypass vulnerability

Trust: 2.07

sources: NVD: CVE-2013-1124 // JVNDB: JVNDB-2013-001707 // BID: 58244 // VULHUB: VHN-61126 // VULMON: CVE-2013-1124

AFFECTED PRODUCTS

vendor:	cisco	model:	network admission control	scope:	eq	version:	-	Trust: 1.6
vendor:	cisco	model:	network admission control appliance	scope:	eq	version:	agent (mac os x)	Trust: 0.8
vendor:	cisco	model:	network admission control	scope:	eq	version:	4.9	Trust: 0.3

sources: BID: 58244 // JVNDB: JVNDB-2013-001707 // CNNVD: CNNVD-201302-630 // NVD: CVE-2013-1124

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2013-1124
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2013-1124
value:	MEDIUM
Trust: 0.8
CNNVD:	CNNVD-201302-630
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-61126
value:	MEDIUM
Trust: 0.1
VULMON:	CVE-2013-1124
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2013-1124
severity:	MEDIUM
baseScore:	5.8
vectorString:	AV:N/AC:M/AU:N/C:P/I:P/A:N
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	8.6
impactScore:	4.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.9
VULHUB:	VHN-61126
severity:	MEDIUM
baseScore:	5.8
vectorString:	AV:N/AC:M/AU:N/C:P/I:P/A:N
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	8.6
impactScore:	4.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-61126 // VULMON: CVE-2013-1124 // JVNDB: JVNDB-2013-001707 // CNNVD: CNNVD-201302-630 // NVD: CVE-2013-1124

PROBLEMTYPE DATA

problemtype:

CWE-310

Trust: 1.9

sources: VULHUB: VHN-61126 // JVNDB: JVNDB-2013-001707 // NVD: CVE-2013-1124

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201302-630

TYPE

encryption problem

Trust: 0.6

sources: CNNVD: CNNVD-201302-630

CONFIGURATIONS

sources: JVNDB: JVNDB-2013-001707

PATCH

title:

Cisco Network Admission Control Mac Agent Connects to ISE Server with Untrusted SSL Certificate

url:

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-1124

Trust: 0.8

sources: JVNDB: JVNDB-2013-001707

EXTERNAL IDS

db:	NVD	id:	CVE-2013-1124	Trust: 2.9
db:	JVNDB	id:	JVNDB-2013-001707	Trust: 0.8
db:	CISCO	id:	20130227 CISCO NETWORK ADMISSION CONTROL MAC AGENT CONNECTS TO ISE SERVER WITH UNTRUSTED SSL CERTIFICATE	Trust: 0.6
db:	CNNVD	id:	CNNVD-201302-630	Trust: 0.6
db:	BID	id:	58244	Trust: 0.4
db:	VULHUB	id:	VHN-61126	Trust: 0.1
db:	VULMON	id:	CVE-2013-1124	Trust: 0.1

sources: VULHUB: VHN-61126 // VULMON: CVE-2013-1124 // BID: 58244 // JVNDB: JVNDB-2013-001707 // CNNVD: CNNVD-201302-630 // NVD: CVE-2013-1124

REFERENCES

url:	http://tools.cisco.com/security/center/content/ciscosecuritynotice/cve-2013-1124	Trust: 2.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-1124	Trust: 0.8
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2013-1124	Trust: 0.8
url:	http://www.cisco.com/en/us/netsol/ns466/networking_solutions_package.html	Trust: 0.3
url:	https://cwe.mitre.org/data/definitions/310.html	Trust: 0.1
url:	https://nvd.nist.gov	Trust: 0.1

sources: VULHUB: VHN-61126 // VULMON: CVE-2013-1124 // BID: 58244 // JVNDB: JVNDB-2013-001707 // CNNVD: CNNVD-201302-630 // NVD: CVE-2013-1124

CREDITS

Cisco

Trust: 0.3

sources: BID: 58244

SOURCES

db:	VULHUB	id:	VHN-61126
db:	VULMON	id:	CVE-2013-1124
db:	BID	id:	58244
db:	JVNDB	id:	JVNDB-2013-001707
db:	CNNVD	id:	CNNVD-201302-630
db:	NVD	id:	CVE-2013-1124

LAST UPDATE DATE

2025-04-11T23:02:58.801000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-61126	date:	2013-03-01T00:00:00
db:	VULMON	id:	CVE-2013-1124	date:	2013-03-01T00:00:00
db:	BID	id:	58244	date:	2013-02-27T00:00:00
db:	JVNDB	id:	JVNDB-2013-001707	date:	2013-03-04T00:00:00
db:	CNNVD	id:	CNNVD-201302-630	date:	2013-03-01T00:00:00
db:	NVD	id:	CVE-2013-1124	date:	2025-04-11T00:51:21.963

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-61126	date:	2013-02-28T00:00:00
db:	VULMON	id:	CVE-2013-1124	date:	2013-02-28T00:00:00
db:	BID	id:	58244	date:	2013-02-27T00:00:00
db:	JVNDB	id:	JVNDB-2013-001707	date:	2013-03-04T00:00:00
db:	CNNVD	id:	CNNVD-201302-630	date:	2013-02-28T00:00:00
db:	NVD	id:	CVE-2013-1124	date:	2013-02-28T23:55:01.160