Vulnslist

Cisco vulnerabilities by product, model, software, and advisory.

Web Interface Vulnerabilities in Cisco Secure ACS for Windows

cisco-sa-20020403-acs-win-web · NA · Published · Updated

Cisco Secure Access Control Server (ACS) for Windows contains two vulnerabilities. One vulnerability can lead to the execution of an arbitrary code on an ACS server, and the second can lead to an unauthorized disclosure of information. A patch is available for both vulnerabilities. Cisco Secure ACS for Unix is not vulnerable. No other Cisco product is vulnerable. There is no direct workaround for the vulnerabilities, but it is possible to mitigate them to a great extent. See the Workarounds section for details. This advisory is available at https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20020403-acs-win-web.

Cisco advisory · CSAF JSON

Workarounds

No workaround information imported yet.

CVEsCVE-2002-0159, CVE-2002-0160
Cisco Bug IDsNA
CVSS ScoreBase NA
Product Names From Source
NA, Cisco Secure Access Control Server (ACS) for Windows 2000/ NT

Related Products

Product CVE Evidence
Cisco Secure Access Control Server (ACS) for Windows 2000/ NT CVE-2002-0160 Cisco OpenVuln
Cisco Secure Access Control Server (ACS) for Windows 2000/ NT CVE-2002-0159 Cisco OpenVuln
Cisco Secure Access Control Server (ACS) for Windows CVE-2002-0160 Cisco OpenVuln
Cisco Secure Access Control Server (ACS) for Windows CVE-2002-0159 Cisco OpenVuln