Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco secure access control server 3.0.1 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-0561
Cisco Secure Access Control Server (ACS) 3.x for Windows stores ACS administrator passwords and the master key in the registry with insecure permissions, which allows local users and remote administrators to decrypt the passwords by using Microsoft's cryptographic API functi...
Cisco Secure Access Control Server 3.2
Cisco Secure Access Control Server 3.1.1
Cisco Secure Access Control Server 3.0.1
Cisco Secure Access Control Server 3.0.3
Cisco Secure Access Control Server 3.3
Cisco Secure Access Control Server 3.1
Cisco Secure Access Control Server 3.0
NA
CVE-2003-0210
Buffer overflow in the administration service (CSAdmin) for Cisco Secure ACS prior to 3.1.2 allows remote malicious users to cause a denial of service and possibly execute arbitrary code via a long user parameter to port 2002.
Cisco Secure Access Control Server 2.5
Cisco Secure Access Control Server 3.0.1
Cisco Secure Access Control Server 2.6.2
Cisco Secure Access Control Server 2.1
Cisco Secure Access Control Server 2.6.3
Cisco Secure Access Control Server 3.0
Cisco Secure Access Control Server 2.4
Cisco Secure Access Control Server 2.6.4
Cisco Secure Access Control Server 3.1.1
Cisco Secure Access Control Server 3.0.3
Cisco Secure Access Control Server 2.3
Cisco Secure Access Control Server 2.6
NA
CVE-2002-0938
Cross-site scripting vulnerability in CiscoSecure ACS 3.0 allows remote malicious users to execute arbitrary script or HTML as other web users via the action argument in a link to setup.exe.
Cisco Secure Access Control Server 3.0.1
Cisco Secure Access Control Server 3.0
1 EDB exploit
NA
CVE-2002-0159
Format string vulnerability in the administration function in Cisco Secure Access Control Server (ACS) for Windows, 2.6.x and previous versions and 3.x up to and including 3.01 (build 40), allows remote malicious users to crash the CSADMIN module only (denial of service of admini...
Cisco Secure Access Control Server 3.0.1
Cisco Secure Access Control Server 2.6.2
Cisco Secure Access Control Server 2.6.3
Cisco Secure Access Control Server 3.0
Cisco Secure Access Control Server 2.6.4
Cisco Secure Access Control Server 2.6
NA
CVE-2002-0160
The administration function in Cisco Secure Access Control Server (ACS) for Windows, 2.6.x and previous versions and 3.x up to and including 3.01 (build 40), allows remote malicious users to read HTML, Java class, and image files outside the web root via a ..\.. (modified ..) in ...
Cisco Secure Access Control Server 3.0.1
Cisco Secure Access Control Server 2.6.2
Cisco Secure Access Control Server 2.6.3
Cisco Secure Access Control Server 3.0
Cisco Secure Access Control Server 2.6.4
Cisco Secure Access Control Server 2.6
NA
CVE-2002-0241
NDSAuth.DLL in Cisco Secure Authentication Control Server (ACS) 3.0.1 does not check the Expired or Disabled state of users in the Novell Directory Services (NDS), which could allow those users to authenticate to the server.
Cisco Secure Access Control Server 3.0.1
NA
CVE-2005-4499
The Downloadable RADIUS ACLs feature in Cisco PIX and VPN 3000 concentrators, when creating an ACL on the Cisco Secure Access Control Server (CS ACS), generates a random internal name for an ACL that is also used as a hidden user name and password, which allows remote malicious u...
Cisco Vpn 3001 Concentrator
Cisco Vpn 3015 Concentrator
Cisco Vpn 3020 Concentrator
Cisco Vpn 3030 Concentator
Cisco Vpn 3060 Concentrator
Cisco Vpn 3080 Concentrator
Cisco Adaptive Security Appliance Software 7.0
Cisco Adaptive Security Appliance Software 7.0(4)
Cisco Adaptive Security Appliance Software 7.0.1.4
Cisco Adaptive Security Appliance Software 7.0.4.3
Cisco Vpn 3000 Concentrator Series Software 2.0
Cisco Vpn 3000 Concentrator Series Software 2.5.2.a
Cisco Vpn 3000 Concentrator Series Software 2.5.2.b
Cisco Vpn 3000 Concentrator Series Software 2.5.2.c
Cisco Vpn 3000 Concentrator Series Software 2.5.2.d
Cisco Vpn 3000 Concentrator Series Software 2.5.2.f
Cisco Vpn 3000 Concentrator Series Software 3.0
Cisco Vpn 3000 Concentrator Series Software 3.0.3.a
Cisco Vpn 3000 Concentrator Series Software 3.0.3.b
Cisco Vpn 3000 Concentrator Series Software 3.0.4
Cisco Vpn 3000 Concentrator Series Software 3.1
Cisco Vpn 3000 Concentrator Series Software 3.1(rel)
NA
CVE-2005-0356
Multiple TCP implementations with Protection Against Wrapped Sequence Numbers (PAWS) with the timestamps option enabled allow remote malicious users to cause a denial of service (connection loss) via a spoofed packet with a large timer value, which causes the host to discard late...
Cisco Secure Access Control Server 3.2
Cisco Mgx 8230 1.2.11
Cisco Mgx 8250 1.2.10
Cisco Secure Access Control Server 3.2.2
Cisco Personal Assistant 1.3(2)
Cisco Unity Server 2.2
Cisco Secure Access Control Server 2.4
Cisco Secure Access Control Server 3.1.1
Cisco Personal Assistant 1.3(4)
Cisco Unity Server 3.0
Cisco Secure Access Control Server 2.6.3
Cisco Interactive Voice Response
Cisco Secure Access Control Server 2.42
Cisco Call Manager 3.0
Cisco Call Manager 3.1(3a)
Cisco Secure Access Control Server 3.3.2
Cisco Unity Server 3.1
Cisco Call Manager 1.0
Cisco Unity Server 3.3
Cisco Personal Assistant 1.3(3)
Cisco Secure Access Control Server 2.1
Cisco Secure Access Control Server 3.3(1)
1 EDB exploit
6.5
CVSSv3
CVE-2015-7851
Directory traversal vulnerability in the save_config function in ntpd in ntp_control.c in NTP prior to 4.2.8p4, when used on systems that do not use '\' or '/' characters for directory separation such as OpenVMS, allows remote authenticated users to overwrite ...
Ntp Ntp 4.2.8
Ntp Ntp
7.5
CVSSv3
CVE-2015-7848
An integer overflow can occur in NTP-dev.4.3.70 leading to an out-of-bounds memory copy operation when processing a specially crafted private mode packet. The crafted packet needs to have the correct message authentication code and a valid timestamp. When processed by the NTP dae...
Ntp Ntp-dev 4.3.70
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
server-side request forgery
CVE-2024-30067
CVE-2024-5553
CVE-2024-30095
IDOR
CVE-2024-35252
CVE-2024-23692
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »