CVE-2004-1459
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
31/12/2004
Last modified:
03/04/2025
Description
Cisco Secure Access Control Server (ACS) 3.2, when configured as a Light Extensible Authentication Protocol (LEAP) RADIUS proxy, allows remote attackers to cause a denial of service (device crash) via certain LEAP authentication requests.
Impact
Base Score 2.0
5.00
Severity 2.0
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:cisco:secure_access_control_server:3.0:*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:secure_access_control_server:3.1:*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:secure_access_control_server:3.2:*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:secure_access_control_server:3.2:*:windows_server:*:*:*:*:* | ||
| cpe:2.3:a:cisco:secure_access_control_server:3.2\(1\):*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:secure_access_control_server:3.2\(2\):*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:secure_access_control_server:3.2\(3\):*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:secure_access_control_server:3.3:*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:secure_access_control_server:3.3\(1\):*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:secure_acs_solution_engine:*:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://www.cisco.com/warp/public/707/cisco-sa-20040825-acs.shtml
- http://www.securityfocus.com/bid/11047
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17116
- http://www.cisco.com/warp/public/707/cisco-sa-20040825-acs.shtml
- http://www.securityfocus.com/bid/11047
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17116