Published: 04/10/2002 Updated: 05/09/2008

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 755

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Subscribe to Secure Access Control Server

Cross-site scripting vulnerability in CiscoSecure ACS 3.0 allows remote malicious users to execute arbitrary script or HTML as other web users via the action argument in a link to setup.exe.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco secure access control server 3.0
cisco secure access control server 3.0.1

source: wwwsecurityfocuscom/bid/5026/info Cisco Secure ACS is an access control and accounting server system It is distributed and maintained by Cisco, and in this vulnerability affects implementations on the Microsoft Windows NT platform It has been discovered that the web server component of the Cisco Secure ACS package allows an att ...

NVD-CWE-Other http://www.securityfocus.com/bid/5026 http://www.iss.net/security_center/static/9353.php http://archives.neohapsis.com/archives/bugtraq/2002-06/0156.html http://online.securityfocus.com/archive/1/278222 https://nvd.nist.gov https://www.exploit-db.com/exploits/21555/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2002-0938

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect