Vulnslist

Cisco vulnerabilities by product, model, software, and advisory.

Cisco Secure Access Control Server (ACS) Denial of Service Vulnerability

Cisco-SA-20080903-CVE-2008-2441 · Medium · Published · Updated

Cisco Secure Access Control Server (ACS) contains a vulnerability that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. The vulnerability exists due to an error when handling Remote Authentication Dial In User Service (RADIUS) Extensible Authentication Protocol (EAP) responses.  An authenticated, remote attacker could exploit this vulnerability by submitting a malicious RADIUS EAP response to the target system.  This action could cause the authentication and authorization service and a service used to communicate with the device requesting authentication to crash, creating a DoS condition. Cisco has confirmed this vulnerability and released updated software. A successful attack could disrupt authentication services on the target system.  By repeatedly sending malicious RADIUS EAP responses, the attacker could cause a persistent DoS condition.  This situation could prevent devices that rely on authorization by an AAA server from connecting to the network.

Cisco advisory · CSAF JSON

Workarounds

Administrators are advised to apply the appropriate update.

Administrators are advised to restrict network access to affected systems to trusted users wherever possible.

Administrators are advised to limit the distribution of applications containing RADIUS shared secret information to trusted systems.

Administrators may consider changing shared secret information in order to delay or prevent attacks.

CVEsCVE-2008-2441
Cisco Bug IDsNA
CVSS ScoreBase 3.5
Base 3.5 AV:N/AC:M/Au:S/C:N/I:N/A:P/E:F/RL:OF/RC:C/CDP:N/TD:N/CR:ND/IR:ND/AR:ND
Product Names From Source
Cisco Secure Access Control System (ACS)

Related Products

Product CVE Evidence
Cisco Secure Access Control System (ACS) CVE-2008-2441 Cisco OpenVuln