Lucene search

K

CiscoCVELIST:CVE-2008-0532

HistoryMar 14, 2008 - 8:00 p.m.

CVE-2008-0532

2008-03-1420:00:00

cisco

www.cve.org

6

AI Score

7.7

Confidence

Low

EPSS

0.927

Percentile

99.0%

Multiple buffer overflows in securecgi-bin/CSuserCGI.exe in User-Changeable Password (UCP) before 4.2 in Cisco Secure Access Control Server (ACS) for Windows and ACS Solution Engine allow remote attackers to execute arbitrary code via a long argument located immediately after the Logout argument, and possibly unspecified other vectors.

References

secunia.com/advisories/29351

securityreason.com/securityalert/3743

securitytracker.com/id?1019608

www.cisco.com/en/US/products/products_security_advisory09186a008095f0c4.shtml

www.recurity-labs.com/content/pub/RecurityLabs_Cisco_ACS_UCP_advisory.txt

www.securityfocus.com/archive/1/489463/100/0/threaded

www.securityfocus.com/bid/28222

www.vupen.com/english/advisories/2008/0868

exchange.xforce.ibmcloud.com/vulnerabilities/41154

AI Score

7.7

Confidence

Low

EPSS

0.927

Percentile

99.0%

Related for CVELIST:CVE-2008-0532

checkpoint_advisories2 prion1 exploitdb1 saint4 nvd1 cve1 packetstorm1 seebug1 securityvulns2 cisco1