Signature Detail
Short Name |
APP:CISCO:ACS-OF |
|---|---|
Severity |
High |
Recommended |
No |
Recommended Action |
Drop |
Category |
APP |
Keywords |
Cisco Secure ACS Overflow |
Release Date |
2005/06/01 |
Update Number |
1213 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
APP: Cisco Secure ACS Overflow
This signature detects attempts to exploit a known vulnerability against CISCO Secure ACS Web Console. A successful attack can cause an overflow in the Web console login, thereby creating a possible denial of service (DoS).
Extended Description
It has been reported that some versions of the Cisco Secure ACS software do not properly handle input supplied during authentication. Because of this, it may be possible for a remote attacker to gain unauthorized access to a host using the vulnerable software.
Affected Products
- Cisco Secure ACS for Windows NT 2.1.0
- Cisco Secure ACS for Windows NT 2.3.0
- Cisco Secure ACS for Windows NT 2.4.0
- Cisco Secure ACS for Windows NT 2.5.0
- Cisco Secure ACS for Windows NT 2.6.0
- Cisco Secure ACS for Windows NT 2.6.2
- Cisco Secure ACS for Windows NT 2.6.3
- Cisco Secure ACS for Windows NT 2.6.4
- Cisco Secure ACS for Windows NT 3.0.0
- Cisco Secure ACS for Windows NT 3.0.0 .1
- Cisco Secure ACS for Windows NT 3.0.3
- Cisco Secure ACS for Windows NT 3.1.1
References