Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cisco Secure Access Control Server (ACS) 3.2(3) and earlier spawns a separate unauthenticated TCP connection on a random port when a user authenticates to the ACS GUI, which allows remote attackers to bypass authentication by connecting to that port from the same IP address.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cisco Secure ACS NOVELL目录服务验证绕过漏洞
Vulnerability Description
Cisco Secure Access Control Server和Cisco Secure Access Control Server Solution Engine提供验证,授权和帐户服务的网络设备,一般称为AAA服务器。 Cisco ACS和ACS Solution Engine服务在验证NOVELL目录服务时存在问题,远程攻击者可以利用这个漏洞使用空密码通过验证进行服务访问。 * CSCed81716 -- Cisco Secure ACS可以与外部数据库通信并通过这些数据库验证用户。其中ACS
CVSS Information
N/A
Vulnerability Type
N/A