SB2018020805 - Multiple vulnerabilities in Cisco Policy Suite

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2018020805

SB2018020805 - Multiple vulnerabilities in Cisco Policy Suite

Published: February 8, 2018

Security Bulletin ID SB2018020805
Severity
Medium
Patch available
YES
Number of vulnerabilities 2
Exploitation vector Remote access
Highest impact Data manipulation

Breakdown by Severity

Medium 50% Low 50%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 2 secuirty vulnerabilities.


1) Information disclosure (CVE-ID: CVE-2018-0134)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The vulnerability exists in the RADIUS authentication module of Cisco Policy Suite due to the Cisco Policy Suite RADIUS server component returns different authentication failure messages based on the validity of usernames. A remote attacker can use these messages to determine whether a valid subscriber username has been identified and conduct subsequent attacks against the system.


2) Authentication bypass (CVE-ID: CVE-2018-0116)

The vulnerability allows a remote attacker to bypass authentication on the target system.

The vulnerability is due to incorrect RADIUS user credential validation. An attacker could exploit this vulnerability by attempt to access a Cisco Policy Suite domain configured with RADIUS authentication and be authorized as a subscriber without providing a valid password.


Remediation

Install update from vendor's website.

References