10
CVE-2006-4098
- EPSS 12.72%
- Veröffentlicht 31.12.2006 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:28:25
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Stack-based buffer overflow in the CSRadius service in Cisco Secure Access Control Server (ACS) for Windows before 4.1 and ACS Solution Engine before 4.1 allows remote attackers to execute arbitrary code via a crafted RADIUS Accounting-Request packet.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Cisco ≫ Secure Access Control Server Version3.0
Cisco ≫ Secure Access Control Server Version3.1
Cisco ≫ Secure Access Control Server Version3.2
Cisco ≫ Secure Access Control Server Version3.2.1
Cisco ≫ Secure Access Control Server Version3.2.2
Cisco ≫ Secure Access Control Server Version3.3
Cisco ≫ Secure Access Control Server Version3.3.1
Cisco ≫ Secure Access Control Server Version3.3.2
Cisco ≫ Secure Access Control Server Version4.0
Cisco ≫ Secure Access Control Server Version4.0.1
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 12.72% | 0.958 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 10 | 10 | 10 |
AV:N/AC:L/Au:N/C:C/I:C/A:C
|
http://secunia.com/advisories/23629
http://securitytracker.com/id?1017475
http://www.cisco.com/warp/public/707/cisco-sa-20070105-csacs.shtml
http://www.securityfocus.com/bid/21900
http://www.vupen.com/english/advisories/2007/0068
http://osvdb.org/36126
http://www.kb.cert.org/vuls/id/477164
https://exchange.xforce.ibmcloud.com/vulnerabilities/31327