CVE-2000-1056
0
5
10
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Link copied!
Description
CiscoSecure ACS Server 2.4(2) and earlier allows remote attackers to bypass LDAP authentication on the server if the LDAP server allows null passwords.
CVSS Vector Details
Attack Vector
Network
Attack Complexity
Low
Confidentiality
P
Integrity
P
Availability
P
Affected Software Configurations
- a cisco secure_access_control_server 2.1 * windows_nt * * * * *
- a cisco secure_access_control_server 2.3\(3\) * windows_nt * * * * *
- a cisco secure_access_control_server 2.4\(2\) * windows_nt * * * * *
Weaknesses (CWE)
- NVD-CWE-Other
References & External Links
- http://www.cisco.com/warp/public/707/csecureacsnt-pub.shtml
- http://www.securityfocus.com/bid/1708
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5274
- http://www.cisco.com/warp/public/707/csecureacsnt-pub.shtml
- http://www.securityfocus.com/bid/1708
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5274