CVE-2006-0764

CVE Database · CVE-2006-0764

CVE-2006-0764

· N/AModified

CVSS v3.1

N/A

EPSS

1.98%

Published

Feb 18, 2006

Modified

Apr 15, 2026

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

The Authentication, Authorization, and Accounting (AAA) capability in versions 5.0(1) and 5.0(3) of the software used by multiple Cisco Anomaly Detection and Mitigation products, when running with an incomplete TACACS+ configuration without a "tacacs-server host" command, allows remote attackers to bypass authentication and gain privileges, aka Bug ID CSCsd21455.

Affected Products (6)

cisco · anomaly_guard_modulevulnerable

cisco · guardvulnerable

cisco · traffic_anomaly_detector_modulevulnerable

References (18)

http://secunia.com/advisories/18904

http://securityreason.com/securityalert/435

http://securitytracker.com/id?1015637

http://securitytracker.com/id?1015638

http://www.cisco.com/en/US/products/products_security_advisory09186a008060519a.shtml

Vendor Advisory

http://www.osvdb.org/23237