CVE-2011-3305 : Directory traversal vulnerability in Cisco Network Admission Control (NAC) Manag

Directory traversal vulnerability in Cisco Network Admission Control (NAC) Manager 4.8.x allows remote attackers to read arbitrary files via crafted traffic to TCP port 443, aka Bug ID CSCtq10755.

Published 2011-10-06 10:55:06

Updated 2025-04-11 00:51:22

Source Cisco Systems, Inc.

View at NVD, CVE.org

Vulnerability category: Directory traversal

Products affected by CVE-2011-3305

Cisco » Nac Manager » Version: 4.8(2)
cpe:2.3:a:cisco:nac_manager:4.8\(2\):*:*:*:*:*:*:*
Matching versions
When used together with: Cisco » Nac Appliance
Cisco » Nac Manager » Version: 4.8
cpe:2.3:a:cisco:nac_manager:4.8:*:*:*:*:*:*:*
Matching versions
When used together with: Cisco » Nac Appliance
Cisco » Nac Manager » Version: 4.8(1)
cpe:2.3:a:cisco:nac_manager:4.8\(1\):*:*:*:*:*:*:*
Matching versions
When used together with: Cisco » Nac Appliance

Exploit prediction scoring system (EPSS) score for CVE-2011-3305

EPSS FAQ

42.00%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 97 %

Percentile, the proportion of vulnerabilities that are scored at or less

Metasploit modules for CVE-2011-3305

Cisco Network Access Manager Directory Traversal Vulnerability

First seen: 2020-04-26

auxiliary/scanner/http/cisco_nac_manager_traversal

This module tests whether a directory traversal vulnerability is present in versions of Cisco Network Access Manager 4.8.x You may wish to change FILE (e.g. passwd or hosts), MAXDIRS and RPORT depending on your environment. Authors: - Nenad Stojanovski <nenad.stoj

More information

CVSS scores for CVE-2011-3305

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
7.8	HIGH	AV:N/AC:L/Au:N/C:C/I:N/A:N	10.0	6.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Complete Integrity Impact: None Availability Impact: None

CWE ids for CVE-2011-3305

CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2011-3305

https://exchange.xforce.ibmcloud.com/vulnerabilities/70335

Cisco Network Admission Control directory traversal CVE-2011-3305 Vulnerability Report
http://osvdb.org/76080
http://www.cisco.com/warp/public/707/cisco-sa-20111005-nac.shtml

Directory Traversal Vulnerability in Cisco Network Admission Control Manager
Vendor Advisory
http://www.securityfocus.com/bid/49954

Cisco Network Admission Control (CVE-2011-3305) Directory Traversal Vulnerability
http://www.securitytracker.com/id?1026142

Cisco Network Admission Control Manager Directory Traversal Flaw Lets Remote Users Obtain Potentially Sensitive Information - SecurityTracker
http://secunia.com/advisories/46309

Sign in

Jump to