CVEs-PoC/2006/CVE-2006-0764.md

### [CVE-2006-0764](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0764)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)

### Description

The Authentication, Authorization, and Accounting (AAA) capability in versions 5.0(1) and 5.0(3) of the software used by multiple Cisco Anomaly Detection and Mitigation products, when running with an incomplete TACACS+ configuration without a "tacacs-server host" command, allows remote attackers to bypass authentication and gain privileges, aka Bug ID CSCsd21455.

### POC

#### Reference
- http://securityreason.com/securityalert/435

#### Github
No PoCs found on GitHub currently.