PT-2003-1432 · Cisco · Cisco Secure Acs

Yang Yu

Published

2003-04-26

Updated

2016-10-18

CVE-2003-0210

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions: Cisco Secure ACS versions prior to 3.1.2

Description: The issue is related to a buffer overflow in the administration service (CSAdmin) that allows remote attackers to cause a denial of service and possibly execute arbitrary code. This is achieved by sending a long user parameter to port 2002.

Recommendations: For versions prior to 3.1.2, update to version 3.1.2 or later to resolve the issue. As a temporary workaround, consider restricting access to port 2002 to minimize the risk of exploitation.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2003-0210

Affected Products

Cisco Secure Acs

PT-2003-1432 · Cisco · Cisco Secure Acs

CVE-2003-0210

Related Identifiers

Affected Products

References · 5