Cisco Secure ACS CVE-2007-1800 Remote Security Vulnerability

Cisco Secure ACS CVE-2007-1800 Remote Security Vulnerability

Cisco Secure ACS is prone to a remote security vulnerability. Cisco Secure ACS does not require authentication when Cisco Trust Agent (CTA) transmits posture information, which might allow remote attackers to gain network access via a spoofed Network Endpoint Assessment posture, aka "NACATTACK." NOTE: this attack might be limited to authenticated users and devices.