Lucene search

MitreCVE-2003-0982

HistoryJan 05, 2004 - 5:00 a.m.

CVE-2003-0982

2004-01-0505:00:00

mitre

web.nvd.nist.gov

cve-2003-0982

buffer overflow

cisco acns

authentication module

remote code execution

nvd

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

8.1

Confidence

Low

EPSS

0.057

Percentile

93.4%

JSON

Buffer overflow in the authentication module for Cisco ACNS 4.x before 4.2.11, and 5.x before 5.0.5, allows remote attackers to execute arbitrary code via a long password.

Affected configurations

Nvd

Node

ciscoapplication_and_content_networking_softwareMatch4.0.3

ciscoapplication_and_content_networking_softwareMatch4.1.1

ciscoapplication_and_content_networking_softwareMatch4.1.3

ciscoapplication_and_content_networking_softwareMatch4.2

ciscoapplication_and_content_networking_softwareMatch4.2.7

ciscoapplication_and_content_networking_softwareMatch4.2.9

ciscoapplication_and_content_networking_softwareMatch5.0

ciscoapplication_and_content_networking_softwareMatch5.0.1

ciscoapplication_and_content_networking_softwareMatch5.0.3

ciscocontent_distribution_manager_4630

ciscocontent_distribution_manager_4630Match4.0

ciscocontent_distribution_manager_4630Match4.1

ciscocontent_distribution_manager_4650

ciscocontent_distribution_manager_4650Match4.0

ciscocontent_distribution_manager_4650Match4.1

ciscocontent_distribution_manager_4670

ciscocontent_engineMatch507

ciscocontent_engineMatch507_2.2_.0

ciscocontent_engineMatch507_3.1

ciscocontent_engineMatch507_4.0

ciscocontent_engineMatch507_4.1

ciscocontent_engineMatch560

ciscocontent_engineMatch560_2.2_.0

ciscocontent_engineMatch560_3.1

ciscocontent_engineMatch560_4.0

ciscocontent_engineMatch560_4.1

ciscocontent_engineMatch590

ciscocontent_engineMatch590_2.2_.0

ciscocontent_engineMatch590_3.1

ciscocontent_engineMatch590_4.0

ciscocontent_engineMatch590_4.1

ciscocontent_engineMatch7320

ciscocontent_engineMatch7320_2.2_.0

ciscocontent_engineMatch7320_3.1

ciscocontent_engineMatch7320_4.0

ciscocontent_engineMatch7320_4.1

ciscocontent_engine_moduleMatchfor_cisco_router_2600_series

ciscocontent_engine_moduleMatchfor_cisco_router_3600_series

ciscocontent_engine_moduleMatchfor_cisco_router_3700_series

ciscoenterprise_content_delivery_network_softwareMatch4.0

ciscoenterprise_content_delivery_network_softwareMatch4.1

ciscocontent_router_4430

ciscocontent_router_4450

VendorProductVersionCPE
ciscoapplication_and_content_networking_software4.0.3cpe:2.3:a:cisco:application_and_content_networking_software:4.0.3:*:*:*:*:*:*:*
ciscoapplication_and_content_networking_software4.1.1cpe:2.3:a:cisco:application_and_content_networking_software:4.1.1:*:*:*:*:*:*:*
ciscoapplication_and_content_networking_software4.1.3cpe:2.3:a:cisco:application_and_content_networking_software:4.1.3:*:*:*:*:*:*:*
ciscoapplication_and_content_networking_software4.2cpe:2.3:a:cisco:application_and_content_networking_software:4.2:*:*:*:*:*:*:*
ciscoapplication_and_content_networking_software4.2.7cpe:2.3:a:cisco:application_and_content_networking_software:4.2.7:*:*:*:*:*:*:*
ciscoapplication_and_content_networking_software4.2.9cpe:2.3:a:cisco:application_and_content_networking_software:4.2.9:*:*:*:*:*:*:*
ciscoapplication_and_content_networking_software5.0cpe:2.3:a:cisco:application_and_content_networking_software:5.0:*:*:*:*:*:*:*
ciscoapplication_and_content_networking_software5.0.1cpe:2.3:a:cisco:application_and_content_networking_software:5.0.1:*:*:*:*:*:*:*
ciscoapplication_and_content_networking_software5.0.3cpe:2.3:a:cisco:application_and_content_networking_software:5.0.3:*:*:*:*:*:*:*
ciscocontent_distribution_manager_4630*cpe:2.3:a:cisco:content_distribution_manager_4630:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	application_and_content_networking_software	4.0.3	cpe:2.3:a:cisco:application_and_content_networking_software:4.0.3:::::::*
cisco	application_and_content_networking_software	4.1.1	cpe:2.3:a:cisco:application_and_content_networking_software:4.1.1:::::::*
cisco	application_and_content_networking_software	4.1.3	cpe:2.3:a:cisco:application_and_content_networking_software:4.1.3:::::::*
cisco	application_and_content_networking_software	4.2	cpe:2.3:a:cisco:application_and_content_networking_software:4.2:::::::*
cisco	application_and_content_networking_software	4.2.7	cpe:2.3:a:cisco:application_and_content_networking_software:4.2.7:::::::*
cisco	application_and_content_networking_software	4.2.9	cpe:2.3:a:cisco:application_and_content_networking_software:4.2.9:::::::*
cisco	application_and_content_networking_software	5.0	cpe:2.3:a:cisco:application_and_content_networking_software:5.0:::::::*
cisco	application_and_content_networking_software	5.0.1	cpe:2.3:a:cisco:application_and_content_networking_software:5.0.1:::::::*
cisco	application_and_content_networking_software	5.0.3	cpe:2.3:a:cisco:application_and_content_networking_software:5.0.3:::::::*
cisco	content_distribution_manager_4630	*	cpe:2.3:a:cisco:content_distribution_manager_4630::::::::

Rows per page:

1-10 of 431

References

secunia.com/advisories/10409

www.cisco.com/warp/public/707/cisco-sa-20031210-ACNS-auth.shtml

www.kb.cert.org/vuls/id/352462

www.securityfocus.com/bid/9187

exchange.xforce.ibmcloud.com/vulnerabilities/13945

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

8.1

Confidence

Low

EPSS

0.057

Percentile

93.4%

JSON

Related for CVE-2003-0982