CVE-2008-0532

Multiple buffer overflows in securecgi-bin/CSuserCGI.exe in User-Changeable Password (UCP) before 4.2 in Cisco Secure Access Control Server (ACS) for Windows and ACS Solution Engine allow remote attackers to execute arbitrary code via a long argument located immediately after the Logout argument, and possibly unspecified other vectors.

Severity	HIGH
CVSS	10.0
CWE	CWE-119
KEV
Published	18 years ago
Modified	3 weeks ago

Related Products

Product	Advisory	Evidence
Cisco User-Changeable Password Utility (UCP)	cisco-sa-20080312-ucp	Cisco OpenVuln
Cisco Secure Access Control Server (ACS) for Windows	cisco-sa-20080312-ucp	Cisco OpenVuln