CVE-2007-0105

Currently unrated

Key Information:

Vendor: Cisco
Status: Secure Access Control Server
Vendor: CVE Published:; 9 January 2007

Summary

Stack-based buffer overflow in the CSAdmin service in Cisco Secure Access Control Server (ACS) for Windows before 4.1 and ACS Solution Engine before 4.1 allows remote attackers to execute arbitrary code via a crafted HTTP GET request.

References

http://secunia.com/advisories/23629

third-party-advisoryx_refsource_SECUNIA

http://www.securityfocus.com/bid/21900

vdb-entryx_refsource_BID

https://exchange.xforce.ibmcloud.com/vulnerabilities/31323

vdb-entryx_refsource_XF

EPSS Score

9% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jan 9, 2007
Vulnerability Reserved
Jan 8, 2007