APP: Cisco Secure ACS Overflow
This signature detects attempts to exploit a known vulnerability against CISCO Secure ACS Web Console. A successful attack can cause an overflow in the Web console login, thereby creating a possible denial of service (DoS).
Extended Description
It has been reported that some versions of the Cisco Secure ACS software do not properly handle input supplied during authentication. Because of this, it may be possible for a remote attacker to gain unauthorized access to a host using the vulnerable software.
Affected Products
Cisco secure_acs_for_windows_nt
References
BugTraq: 7413
CVE: CVE-2003-0210
URL: http://www.kb.cert.org/vuls/id/697049 http://www.cisco.com/warp/public/707/cisco-sa-20030423-ACS.shtml
Short Name
APP:CISCO:ACS-OF
Severity
Major
Recommended
False
Recommended Action
Drop
Category
APP
Keywords
ACS CVE-2003-0210 Cisco Overflow Secure bid:7413
Release Date
06/01/2005
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Cisco
CVSS Score
7.5