Lucene search
MitreCVE-2002-0160HistoryJun 25, 2002 - 4:00 a.m.
CVE-2002-0160
2002-06-2504:00:00
mitre
web.nvd.nist.gov
29
cisco
acs
windows
remote attackers
read files
cve-2002-0160
nvd
security vulnerability
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.6
Confidence
Low
EPSS
0.003
Percentile
71.5%
The administration function in Cisco Secure Access Control Server (ACS) for Windows, 2.6.x and earlier and 3.x through 3.01 (build 40), allows remote attackers to read HTML, Java class, and image files outside the web root via a ….. (modified …) in the URL to port 2002.
Affected configurations
Node
ciscosecure_access_control_serverMatch2.6
ORciscosecure_access_control_serverMatch2.6.2
ORciscosecure_access_control_serverMatch2.6.3
ORciscosecure_access_control_serverMatch2.6.4
ORciscosecure_access_control_serverMatch3.0
ORciscosecure_access_control_serverMatch3.0.1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cisco | secure_access_control_server | 2.6 | cpe:2.3:a:cisco:secure_access_control_server:2.6:*:*:*:*:*:*:* |
| cisco | secure_access_control_server | 2.6.2 | cpe:2.3:a:cisco:secure_access_control_server:2.6.2:*:*:*:*:*:*:* |
| cisco | secure_access_control_server | 2.6.3 | cpe:2.3:a:cisco:secure_access_control_server:2.6.3:*:*:*:*:*:*:* |
| cisco | secure_access_control_server | 2.6.4 | cpe:2.3:a:cisco:secure_access_control_server:2.6.4:*:*:*:*:*:*:* |
| cisco | secure_access_control_server | 3.0 | cpe:2.3:a:cisco:secure_access_control_server:3.0:*:*:*:*:*:*:* |
| cisco | secure_access_control_server | 3.0.1 | cpe:2.3:a:cisco:secure_access_control_server:3.0.1:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2002-0160
2002-04-22 04:00:00
cvelist
cvelist
CVE-2002-0160
2002-06-25 04:00:00
cisco
cisco
Web Interface Vulnerabilities in Cisco Secure ACS for Windows
2002-04-03 16:00:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.6
Confidence
Low
EPSS
0.003
Percentile
71.5%
Related for CVE-2002-0160