Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco secure access control server 3.0.1 vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv2
CVE-2006-0561
Cisco Secure Access Control Server (ACS) 3.x for Windows stores ACS administrator passwords and the master key in the registry with insecure permissions, which allows local users and remote administrators to decrypt the passwords by using Microsoft's cryptographic API functi...
Cisco Secure Access Control Server 3.0
Cisco Secure Access Control Server 3.1.1
Cisco Secure Access Control Server 3.1
Cisco Secure Access Control Server 3.2
Cisco Secure Access Control Server 3.0.1
Cisco Secure Access Control Server 3.0.3
Cisco Secure Access Control Server 3.3
7.5
CVSSv2
CVE-2003-0210
Buffer overflow in the administration service (CSAdmin) for Cisco Secure ACS prior to 3.1.2 allows remote malicious users to cause a denial of service and possibly execute arbitrary code via a long user parameter to port 2002.
Cisco Secure Access Control Server 2.5
Cisco Secure Access Control Server 2.6
Cisco Secure Access Control Server 3.1.1
Cisco Secure Access Control Server 2.6.2
Cisco Secure Access Control Server 2.6.3
Cisco Secure Access Control Server 2.1
Cisco Secure Access Control Server 2.6.4
Cisco Secure Access Control Server 3.0
Cisco Secure Access Control Server 2.3
Cisco Secure Access Control Server 2.4
Cisco Secure Access Control Server 3.0.1
Cisco Secure Access Control Server 3.0.3
7.5
CVSSv2
CVE-2002-0938
Cross-site scripting vulnerability in CiscoSecure ACS 3.0 allows remote malicious users to execute arbitrary script or HTML as other web users via the action argument in a link to setup.exe.
Cisco Secure Access Control Server 3.0
Cisco Secure Access Control Server 3.0.1
1 EDB exploit
7.5
CVSSv2
CVE-2002-0159
Format string vulnerability in the administration function in Cisco Secure Access Control Server (ACS) for Windows, 2.6.x and previous versions and 3.x up to and including 3.01 (build 40), allows remote malicious users to crash the CSADMIN module only (denial of service of admini...
Cisco Secure Access Control Server 3.0.1
Cisco Secure Access Control Server 2.6.4
Cisco Secure Access Control Server 3.0
Cisco Secure Access Control Server 2.6
Cisco Secure Access Control Server 2.6.2
Cisco Secure Access Control Server 2.6.3
5
CVSSv2
CVE-2002-0160
The administration function in Cisco Secure Access Control Server (ACS) for Windows, 2.6.x and previous versions and 3.x up to and including 3.01 (build 40), allows remote malicious users to read HTML, Java class, and image files outside the web root via a ..\.. (modified ..) in ...
Cisco Secure Access Control Server 2.6.2
Cisco Secure Access Control Server 2.6.3
Cisco Secure Access Control Server 2.6.4
Cisco Secure Access Control Server 2.6
Cisco Secure Access Control Server 3.0
Cisco Secure Access Control Server 3.0.1
7.5
CVSSv2
CVE-2002-0241
NDSAuth.DLL in Cisco Secure Authentication Control Server (ACS) 3.0.1 does not check the Expired or Disabled state of users in the Novell Directory Services (NDS), which could allow those users to authenticate to the server.
Cisco Secure Access Control Server 3.0.1
5
CVSSv2
CVE-2005-0356
Multiple TCP implementations with Protection Against Wrapped Sequence Numbers (PAWS) with the timestamps option enabled allow remote malicious users to cause a denial of service (connection loss) via a spoofed packet with a large timer value, which causes the host to discard late...
Cisco Interactive Voice Response
Cisco Ip Contact Center Enterprise
Cisco Personal Assistant 1.4\\(2\\)
Cisco Emergency Responder 1.1
Cisco Intelligent Contact Manager 5.0
Cisco Personal Assistant 1.3\\(3\\)
Cisco Personal Assistant 1.3\\(4\\)
Cisco Personal Assistant 1.4\\(1\\)
Cisco Secure Access Control Server 2.3
Cisco Secure Access Control Server 2.6
Cisco Secure Access Control Server 3.0
Cisco Secure Access Control Server 3.2\\(1.20\\)
Cisco Secure Access Control Server 3.2\\(2\\)
Cisco Agent Desktop
Cisco E-mail Manager
Cisco Personal Assistant 1.3\\(1\\)
Cisco Personal Assistant 1.3\\(2\\)
Cisco Secure Access Control Server 2.3.5.1
Cisco Secure Access Control Server 2.3.6.1
Cisco Secure Access Control Server 2.6.3
Cisco Secure Access Control Server 2.6.4
Cisco Secure Access Control Server 3.1.1
1 EDB exploit
5
CVSSv2
CVE-2015-7848
An integer overflow can occur in NTP-dev.4.3.70 leading to an out-of-bounds memory copy operation when processing a specially crafted private mode packet. The crafted packet needs to have the correct message authentication code and a valid timestamp. When processed by the NTP dae...
Ntp Ntp-dev 4.3.70
6.5
CVSSv2
CVE-2015-7849
Use-after-free vulnerability in ntpd in NTP 4.2.x prior to 4.2.8p4, and 4.3.x prior to 4.3.77 allows remote authenticated users to possibly execute arbitrary code or cause a denial of service (crash) via crafted packets.
Ntp Ntp
Ntp Ntp 4.2.8
Netapp Oncommand Balance -
Netapp Oncommand Performance Manager -
Netapp Oncommand Unified Manager -
Netapp Clustered Data Ontap -
Netapp Data Ontap -
3.5
CVSSv2
CVE-2015-7851
Directory traversal vulnerability in the save_config function in ntpd in ntp_control.c in NTP prior to 4.2.8p4, when used on systems that do not use '\' or '/' characters for directory separation such as OpenVMS, allows remote authenticated users to overwrite ...
Ntp Ntp
Ntp Ntp 4.2.8
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-52710
arbitrary
CVE-2024-5272
CVE-2024-2961
brute force
remote
CVE-2024-32944
CVE-2024-36241
CVE-2024-5274
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »