CVE-2007-0105

Stack-based buffer overflow in the CSAdmin service in Cisco Secure Access Control Server (ACS) for Windows before 4.1 and ACS Solution Engine before 4.1 allows remote attackers to execute arbitrary code via a crafted HTTP GET request.

Published: Jan 9, 2007
Updated: Apr 13, 2023
CVE: CVE-2007-0105
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
cisco / secure_access_control_server	-	4.0.1.x

http://secunia.com/advisories/23629
http://securitytracker.com/id?1017475
http://www.cisco.com/warp/public/707/cisco-sa-20070105-csacs.shtml
http://www.kb.cert.org/vuls/id/744249
http://www.osvdb.org/32642
http://www.securityfocus.com/bid/21900
http://www.vupen.com/english/advisories/2007/0068
https://exchange.xforce.ibmcloud.com/vulnerabilities/31323

Vulnerability Database

289,697

CVE-2007-0105