CVE-2002-0241

NDSAuth.DLL in Cisco Secure Authentication Control Server (ACS) 3.0.1 does not check the Expired or Disabled state of users in the Novell Directory Services (NDS), which could allow those users to authenticate to the server.

Severity	HIGH
CVSS	7.5
CWE	NVD-CWE-Other
KEV
Published	23 years ago
Modified	1 month ago

Related Products

Product	Advisory	Evidence
Cisco Secure Access Control Server (ACS) for Windows 2000/ NT	cisco-sa-20020207-acs-nds-auth	Cisco OpenVuln
Cisco Secure Access Control Server (ACS) for Windows	cisco-sa-20020207-acs-nds-auth	Cisco OpenVuln