Researchers in Germany demonstrated a tool that allows an unauthorized PC to disguise itself as a legitimate client in a Cisco Network Admission Control (NAC) environment. The tool springs from a couple of “design flaws” that ERNW discovered in Cisco’s NAC. The flaws were found in the communication between the client and Cisco’s Admission Control Server. ERNW GmbH has informed Cisco of the vulnerabilities and the tool, but the switch maker has not responded yet, they say. The exploit could be executed only by an insider who had an internal network address.”]
Source: https://www.darkreading.com/analytics/cisco-s-nac-gets-hacked