37 matches found
Cisco Secure Access Control Server UCP service Detection
Binary data ciscoacsucpdetect.nbin...
Update Protection against Cisco Secure Access Control Server UCP Application CSuserCGI.exe Buffer Overflow Vulnerability
A buffer overflow vulnerability has been discovered in Cisco User-Changeable Password UCP application. The Cisco UCP application is used by Cisco Secure Access Control Server ACS. It allows users to change their ACS passwords with a web-based utility. A remote attacker may exploit this issue to...
Cisco Secure ACS UCP CSuserCGI.exe buffer overflow
Added: 04/07/2008 CVE: CVE-2008-0532 BID: 28222 OSVDB: 42961 Background Cisco Secure Access Control Server ACS is a centralized user access control framework which can be used with routers, switches, firewalls, VPNs, and other devices. User Changeable Passwords UCP, a utility implemented by Cisco...
Cisco Secure ACS UCP CSuserCGI.exe buffer overflow
Added: 04/07/2008 CVE: CVE-2008-0532 BID: 28222 OSVDB: 42961 Background Cisco Secure Access Control Server ACS is a centralized user access control framework which can be used with routers, switches, firewalls, VPNs, and other devices. User Changeable Passwords UCP, a utility implemented by Cisco...
Cisco Secure ACS UCP CSuserCGI.exe buffer overflow
Added: 04/07/2008 CVE: CVE-2008-0532 BID: 28222 OSVDB: 42961 Background Cisco Secure Access Control Server ACS is a centralized user access control framework which can be used with routers, switches, firewalls, VPNs, and other devices. User Changeable Passwords UCP, a utility implemented by Cisco...
Cisco Secure ACS UCP CSuserCGI.exe buffer overflow
Added: 04/07/2008 CVE: CVE-2008-0532 BID: 28222 OSVDB: 42961 Background Cisco Secure Access Control Server ACS is a centralized user access control framework which can be used with routers, switches, firewalls, VPNs, and other devices. User Changeable Passwords UCP, a utility implemented by Cisco...
Cisco User-Changeable Password(UCP)CSuserCGI.exe缓冲区溢出及跨站脚本漏洞
BUGTRAQ ID: 28222 CVECAN ID: CVE-2008-0532,CVE-2008-0533 UCP应用允许终端用户使用基于Web的工具更改Cisco Secure Access Control Server(ACS)的口令。 /securecgi-bin/CSUserCGI.exe CGI存在多个缓冲区溢出和跨站脚本漏洞,远程攻击者可能利用此漏洞控制服务器。...
CVE-2008-0533
Multiple cross-site scripting XSS vulnerabilities in securecgi-bin/CSuserCGI.exe in User-Changeable Password UCP before 4.2 in Cisco Secure Access Control Server ACS for Windows and ACS Solution Engine allow remote attackers to inject arbitrary web script or HTML via an argument located immediate...
RecurityLabs_Cisco_ACS_UCP_advisory.txt
Recurity Labs GmbH http://www.recurity-labs.com [email protected] Date: 12.03.2008 Vendor: Cisco Systems Product: Cisco Secure Access Control Server ACS for Windows User-Changeable Password UCP application Vulnerability: Multiple remote pre-authentication buffer overflows Cross Site...
Cisco SecureACS buffer overflow
Buffer overflow on UCP user changeable passwords...
Cisco ACS UCP Remote Pre-Authentication Buffer Overflows
Hi, please find attached an advisory covering vulnerabilities in the Cisco ACS UCP program. Alternatively, the advisory can also be found at http://www.recurity-labs.com/content/pub/RecurityLabsCiscoACSUCPadvisory.txt cheers FX -- Recurity Labs GmbH | Felix 'FX' Lindner http://www.recurity-labs.c...
Cisco User-Changeable Password (UCP) 3.3.4.12.5 - CSuserCGI.exe Multiple Remote Vulnerabilities
Cisco User-Changeable Password UCP 3.3.4.12.5 - CSuserCGI.exe Multiple Remote Vulnerabilities source: https://www.securityfocus.com/bid/28222/info Cisco User-Changeable Password UCP is prone to multiple remote vulnerabilities, including cross-site scripting and buffer-overflow vulnerabilities...
Cisco Security Advisory: Cisco Secure Access Control Server for Windows User-Changeable Password Vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Cisco Secure Access Control Server for Windows User-Changeable Password Vulnerabilities Advisory ID: cisco-sa-20080312-ucp http://www.cisco.com/warp/public/707/cisco-sa-20080312-ucp.shtml Revision 1.0 ============ For Public...
Cisco User-Changeable Password (UCP) 3.3.4.12.5 - 'CSuserCGI.exe' Multiple Remote Vulnerabilities
source: https://www.securityfocus.com/bid/28222/info Cisco User-Changeable Password UCP is prone to multiple remote vulnerabilities, including cross-site scripting and buffer-overflow vulnerabilities. Exploiting the cross-site scripting issues may help the attacker steal cookie-based authenticati...
Cisco User-Changeable Password (UCP) 3.3.4.12.5 - 'CSUserCGI.exe' Help Facility Cross-Site Scripting
source: https://www.securityfocus.com/bid/28222/info Cisco User-Changeable Password UCP is prone to multiple remote vulnerabilities, including cross-site scripting and buffer-overflow vulnerabilities. Exploiting the cross-site scripting issues may help the attacker steal cookie-based authenticati...
Ethereal contains multiple vulnerabilities in the UCP protocol dissector
Overview Ethereal contains multiple buffer overflows in the Universal Control Protocol UCP protocol dissector. These vulnerabilities could allow a remote, unauthenticated attacker to execute arbitrary code. Description Ethereal is a network traffic analysis package. It includes the ability to...
multiple vulnerabilities in ethereal
Stefan Esser of e-matters Security discovered a baker's dozen of buffer overflows in Ethereal's decoders, including: NetFlow IGAP EIGRP PGM IRDA BGP ISUP TCAP UCP In addition, a vulnerability in the RADIUS decoder was found by Jonathan Heusser. Finally, there is one uncredited vulnerability...