Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-0210

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2003-0210
Last Modified 10 Sep 2008 03:18:15
Published 12 May 2003 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2003-0210

Summary

Buffer overflow in the administration service (CSAdmin) for Cisco Secure ACS before 3.1.2 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long user parameter to port 2002.

Vulnerable Systems

Application

  • Cisco Secure Access Control Server 2.1

  • Cisco Secure Access Control Server 2.3

  • Cisco Secure Access Control Server 2.4

  • Cisco Secure Access Control Server 2.5

  • Cisco Secure Access Control Server 2.6

  • Cisco Secure Access Control Server 2.6.2

  • Cisco Secure Access Control Server 2.6.3

  • Cisco Secure Access Control Server 2.6.4

  • Cisco Secure Access Control Server 3.0

  • Cisco Secure Access Control Server 3.0.1

  • Cisco Secure Access Control Server 3.0.3

  • Cisco Secure Access Control Server 3.1.1


References

CERT-VN - VU#697049

CISCO - 20030423 Cisco Secure Access Control Server for Windows Admin Buffer Overflow Vulnerability

BUGTRAQ - 20030424 NSFOCUS SA2003-04 : Remote Buffer Overflow Vulnerability in Web Management Interface of Cisco Secure ACS


Last Updated: 27 May 2016 10:37:49