Arbitrary File Read Vulnerability in Cisco Secure Access Control System
CVE-2014-0667

Currently unrated

Key Information:

Vendor: Cisco
Status: Secure Access Control System
Vendor: CVE Published:; 16 January 2014

Summary

The RMI interface of Cisco Secure Access Control System lacks proper authorization checks, allowing remote authenticated users to read arbitrary files. This vulnerability could potentially expose sensitive information and compromise the integrity of the system.

References

http://www.securitytracker.com/id/1029641

vdb-entryx_refsource_SECTRACK

http://www.securityfocus.com/bid/64983

vdb-entryx_refsource_BID

http://osvdb.org/102168

vdb-entryx_refsource_OSVDB

Timeline

Vulnerability published
Jan 16, 2014
Vulnerability Reserved
Jan 2, 2014