Current Activity - Cisco Releases Security Advisories

[Current Activity <us-cert () us-cert gov>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

US-CERT Current Activity

Cisco Releases Security Advisories

Original release date: March 30, 2011 at 2:18 pm
Last revised: March 31, 2011 at 8:08 am


Cisco has released a security advisory to address a vulnerability in
some versions of Cisco Secure Access Control System (ACS). This
vulnerability may allow an attacker to change the password of a user
account without any previous access to the user's account or knowledge
of the account's previous password.

Additionally, Cisco has released a security advisory to address a
vulnerability in some versions of the Cisco Network Access Control
(NAC) Guest Server System Software. This vulnerability may allow an
unauthenticated user to access the protected network.

US-CERT encourages users and administrators to review Cisco security
advisories cisco-sa-20110330-acs and cisco-sa-20110330-nac and apply
any necessary updates to help mitigate the risks.

Relevant Url(s):
<http://www.cisco.com/warp/public/707/cisco-sa-20110330-nac.shtml>

<http://www.cisco.com/en/US/products/products_security_advisory09186a0080b74117.shtml>

====
This entry is available at
http://www.us-cert.gov/current/index.html#cisco_releases_security_advisory_for24

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)

iQEVAwUBTZR3UT6pPKYJORa3AQKplwf/bHv5rhyJpDXOvYH+hKnXASywDKJldpaC
eaK08UZWqzpGwnBxfXxfXrLD19+WOZFVuYzlRle1fk/qFi3UKlruQEcm0m59UyRo
KdYDa2aDMPW+ThzLPw0qsh3KqbVsKJj/e8aG4NQZx8NRon9VH/BhopwDi+h6C68v
IVjDz5dEPjqZsQq0qqAlpGsGae/FVtw9rsJdhSwq6RHl1BIaENDp7MB2EQKoYbPA
cacVDJVYj62XBZ5oOuhz5dlWsUEYPPUJxiadQX3FEyc3N3hwPxmqyXkULl+J1ezP
YZ+tkeal0A9DgqlYXvOGUrqp4pl8gVMAD+SzTPALJkXRUBE92B1twQ==
=N1Ao
-----END PGP SIGNATURE-----