Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2006-4097
HistoryDec 31, 2006 - 5:00 a.m.

CVE-2006-4097

2006-12-3105:00:00
NVD-CWE-noinfo
[email protected]
web.nvd.nist.gov
15
cisco
secure acs
windows
solution engine
denial of service
radius
cve-2006-4097
nvd

7.4 High

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.022 Low

EPSS

Percentile

89.4%

JSON

Multiple unspecified vulnerabilities in the CSRadius service in Cisco Secure Access Control Server (ACS) for Windows before 4.1 and ACS Solution Engine before 4.1 allow remote attackers to cause a denial of service (crash) via a crafted RADIUS Access-Request packet. NOTE: it has been reported that at least one issue is a heap-based buffer overflow involving the Tunnel-Password attribute.

Related

cert 1
cisco 1
securityvulns 1
cert
cert
Cisco Secure Access Control Server fails to properly handle specially crafted Access-Request messages
2007-01-15 00:00:00
cisco
cisco
Cisco Secure Access Control Server Access-Request Handling Denial of Service Vulnerability
2007-01-05 23:22:58
securityvulns
securityvulns
Cisco Security Advisory: Multiple Vulnerabilities in Cisco Secure Access Control Server
2007-01-07 00:00:00

7.4 High

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.022 Low

EPSS

Percentile

89.4%

JSON
Related for CVE-2006-4097
cert1cisco1securityvulns1