Cisco: >> Network Access Control Security Vulnerabilities
Cisco NAC maintains an exception list that does not record device properties other than MAC address, which allows physically proximate attackers to bypass control methods and join a local network by spoofing the MAC address of a different type of device, as demonstrated by using the MAC address of a disconnected printer.
CVSS Score
4.6
EPSS Score
0.001
Published
2006-09-26
Cisco NAC allows quarantined devices to communicate over the network with (1) DNS, (2) DHCP, and (3) EAPoUDP, which allows attackers to bypass control methods by tunneling network traffic through one of these protocols.
CVSS Score
7.5
EPSS Score
0.004
Published
2006-09-26