Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveCiscoCVE-2008-0532
HistoryMar 14, 2008 - 8:44 p.m.

CVE-2008-0532

2008-03-1420:44:00
CWE-119
cisco
web.nvd.nist.gov
24
cve-2008-0532
cisco
secure access control server
acs
buffer overflow
remote code execution
nvd

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.6

Confidence

Low

EPSS

0.927

Percentile

99.0%

JSON

Multiple buffer overflows in securecgi-bin/CSuserCGI.exe in User-Changeable Password (UCP) before 4.2 in Cisco Secure Access Control Server (ACS) for Windows and ACS Solution Engine allow remote attackers to execute arbitrary code via a long argument located immediately after the Logout argument, and possibly unspecified other vectors.

Affected configurations

Nvd
Node
ciscoacs_for_windows
OR
ciscoacs_solution_engine
OR
ciscouser_changeable_passwordMatch4.1
VendorProductVersionCPE
ciscoacs_for_windows*cpe:2.3:a:cisco:acs_for_windows:*:*:*:*:*:*:*:*
ciscoacs_solution_engine*cpe:2.3:a:cisco:acs_solution_engine:*:*:*:*:*:*:*:*
ciscouser_changeable_password4.1cpe:2.3:a:cisco:user_changeable_password:4.1:*:*:*:*:*:*:*

Related

checkpoint_advisories 2
prion 1
exploitdb 1
saint 4
cvelist 1
nvd 1
packetstorm 1
seebug 1
securityvulns 2
cisco 1
checkpoint_advisories
checkpoint_advisories
Cisco Secure Access Control Server UCP Application Buffer Overflow (CVE-2008-0532)
2009-09-30 00:00:00
Update Protection against Cisco Secure Access Control Server UCP Application CSuserCGI.exe Buffer Overflow Vulnerability
2008-05-09 00:00:00
prion
prion
Buffer overflow
2008-03-14 20:44:00
exploitdb
exploitdb
Cisco User-Changeable Password (UCP) 3.3.4.12.5 - 'CSuserCGI.exe' Multiple Remote Vulnerabilities
2008-03-12 00:00:00
saint
saint
Cisco Secure ACS UCP CSuserCGI.exe buffer overflow
2008-04-07 00:00:00
Cisco Secure ACS UCP CSuserCGI.exe buffer overflow
2008-04-07 00:00:00
Cisco Secure ACS UCP CSuserCGI.exe buffer overflow
2008-04-07 00:00:00
cvelist
cvelist
CVE-2008-0532
2008-03-14 20:00:00
nvd
nvd
CVE-2008-0532
2008-03-14 20:44:00
packetstorm
packetstorm
RecurityLabs_Cisco_ACS_UCP_advisory.txt
2008-03-13 00:00:00
seebug
seebug
Cisco User-Changeable Password(UCP)CSuserCGI.exe缓冲区溢出及跨站脚本漏洞
2008-03-15 00:00:00
securityvulns
securityvulns
Cisco SecureACS buffer overflow
2008-03-13 00:00:00
Cisco Security Advisory: Cisco Secure Access Control Server for Windows User-Changeable Password Vulnerabilities
2008-03-12 00:00:00
cisco
cisco
Cisco Secure Access Control Server for Windows User-Changeable Password Vulnerabilities
2008-03-12 16:00:00

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.6

Confidence

Low

EPSS

0.927

Percentile

99.0%

JSON
Related for CVE-2008-0532
checkpoint_advisories2prion1exploitdb1saint4cvelist1nvd1packetstorm1seebug1securityvulns2cisco1