← back
CVE-2002-0159

CVE-2002-0159

EPSS 5.4%
Format string vulnerability in the administration function in Cisco Secure Access Control Server (ACS) for Windows, 2.6.x and earlier and 3.x through 3.01 (build 40), allows remote attackers to crash the CSADMIN module only (denial of service of administration function) or execute arbitrary code via format strings in the URL to port 2002.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://marc.info/?l=bugtraq&m=101787248913611&w=2http://www.cisco.com/warp/public/707/ACS-Win-Web.shtmlhttp://www.iss.net/security_center/static/8742.phphttp://www.osvdb.org/2062http://www.securityfocus.com/bid/4416