Security Advisory

CVE-2004-1461

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2005-02-13 05:00:00

Last updated 2024-08-08 00:53:23

Assigner mitre

State PUBLISHED

Description

Cisco Secure Access Control Server (ACS) 3.2(3) and earlier spawns a separate unauthenticated TCP connection on a random port when a user authenticates to the ACS GUI, which allows remote attackers to bypass authentication by connecting to that port from the same IP address.

← Browse all CVEs View on cve.org ↗