Multiple unspecified vulnerabilities in the CSRadius service in Cisco Secure Access Control Server (ACS) for Windows prior to 4.1 and ACS Solution Engine prior to 4.1 allow remote malicious users to cause a denial of service (crash) via a crafted RADIUS Access-Request packet. NOTE: it has been reported that at least one issue is a heap-based buffer overflow involving the Tunnel-Password attribute.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
cisco secure access control server 4.1 |
||
cisco secure access control server |
Vulmon