Vulnerability in N/a
CVE-2008-0532
Multiple buffer overflows in securecgi-bin/CSuserCGI.exe in User-Changeable Password (UCP) before 4.2 in Cisco Secure Access Control Server (ACS) for Windows and ACS Solution Engine allow remote attackers to execute arbitrary code via a lo…
EPSS: 0.712 (98.7th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
References
- www.recurity-labs.com/content/pub/RecurityLabs_Cisco_ACS_UCP_advisory.txt (x_refsource_MISC)
- 20080312 Cisco Secure Access Control Server for Windows User-Changeable Password Vulnerabilities (x_refsource_CISCO, vendor-advisory)
- 20080312 Cisco ACS UCP Remote Pre-Authentication Buffer Overflows (mailing-list, x_refsource_BUGTRAQ)
- 28222 (vdb-entry, x_refsource_BID)
- ADV-2008-0868 (vdb-entry, x_refsource_VUPEN)
- 3743 (x_refsource_SREASON, third-party-advisory)
- cisco-acs-ucp-csusercgi-bo(41154) (vdb-entry, x_refsource_XF)
- 1019608 (vdb-entry, x_refsource_SECTRACK)
- 29351 (x_refsource_SECUNIA, third-party-advisory)