CVE-2014-0649

Currently unrated

Key Information:

Vendor: Cisco
Status: Secure Access Control System
Vendor: CVE Published:; 16 January 2014

Summary

The RMI interface in Cisco Secure Access Control System (ACS) 5.x before 5.5 does not properly enforce authorization requirements, which allows remote authenticated users to obtain superadmin access via a request to this interface, aka Bug ID CSCud75180.

References

http://secunia.com/advisories/56213

third-party-advisoryx_refsource_SECUNIA

http://tools.cisco.com/security/center/viewAlert.x?alertI...

x_refsource_CONFIRM

http://www.securitytracker.com/id/1029634

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Jan 16, 2014
Vulnerability Reserved
Jan 2, 2014