Vulnerability CVE-2008-0533

Vulnerability CVE-2008-0533

Published: 2008-03-14 Modified: 2012-02-12

Description:

	Topic	Author	Date
High	Cisco ACS UCP Remote Pre-Authentication Buffer Overflows	Felix \'FX\...	17.03.2008

Type:

(Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

CVSS Base Score	Impact Subscore	Exploitability Subscore
4.3/10	2.9/10	8.6/10

Affected software
Cisco -> Acs for windows
Cisco -> Acs solution engine
Cisco -> User changeable password

http://securityreason.com/securityalert/3743

http://securitytracker.com/id?1019607

http://www.cisco.com/en/US/products/products_security_advisory09186a008095f0c4.shtml

http://www.recurity-labs.com/content/pub/RecurityLabs_Cisco_ACS_UCP_advisory.txt

http://www.securityfocus.com/archive/1/489463/100/0/threaded

http://www.securityfocus.com/bid/28222

http://www.vupen.com/english/advisories/2008/0868

https://exchange.xforce.ibmcloud.com/vulnerabilities/41156