CVE-2014-0648
CVE-2014-0648
The RMI interface in Cisco Secure Access Control System (ACS) 5.x before 5.5 does not properly enforce authentication and authorization requirements, which allows remote attackers to obtain administrative access via a request to this interface, aka Bug ID CSCud75187.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://osvdb.org/102117http://secunia.com/advisories/56213https://exchange.xforce.ibmcloud.com/vulnerabilities/90431http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140115-csacshttp://tools.cisco.com/security/center/viewAlert.x?alertId=32379http://www.securityfocus.com/bid/64962http://www.securitytracker.com/id/1029634