← voltar
CVE-2002-0160

CVE-2002-0160

EPSS 2.4%
The administration function in Cisco Secure Access Control Server (ACS) for Windows, 2.6.x and earlier and 3.x through 3.01 (build 40), allows remote attackers to read HTML, Java class, and image files outside the web root via a ..\.. (modified ..) in the URL to port 2002.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://marc.info/?l=bugtraq&m=101786689128667&w=2http://www.cisco.com/warp/public/707/ACS-Win-Web.shtmlhttp://www.osvdb.org/5352