Buffer Overflow Vulnerability in User-Changeable Password of Cisco Secure Access Control Server
CVE-2008-0532

Currently unrated

Key Information:

Vendor

Cisco
Status
Acs Solution Engine
User Changeable Password
Acs For Windows
Vendor
CVE Published:
14 March 2008

What is CVE-2008-0532?

Multiple buffer overflow vulnerabilities exist in the User-Changeable Password (UCP) feature of Cisco Secure Access Control Server (ACS) prior to version 4.2. These vulnerabilities arise in the securecgi-bin/CSuserCGI.exe component, allowing remote attackers to execute arbitrary code by sending specially crafted requests with overly long arguments placed immediately after the Logout argument. This poses a significant security risk, as it could lead to unauthorized access and execution of malicious code on affected systems.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.recurity-labs.com/content/pub/RecurityLabs_Cis...
x_refsource_MISC
http://www.cisco.com/en/US/products/products_security_adv...
vendor-advisoryx_refsource_CISCO
http://www.securityfocus.com/archive/1/489463/100/0/threaded
mailing-listx_refsource_BUGTRAQ

EPSS Score

76% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.