Security Advisory

CVE-2013-1124

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2013-02-28 23:00:00

Last updated 2024-09-17 04:14:47

Assigner cisco

State PUBLISHED

Description

The Cisco Network Admission Control (NAC) agent on Mac OS X does not verify the X.509 certificate of an Identity Services Engine (ISE) server during an SSL session, which allows man-in-the-middle attackers to spoof ISE servers via an arbitrary certificate, aka Bug ID CSCub24309.

← Browse all CVEs View on cve.org ↗