Threat Encyclopedia

Cisco.Secure.ACS.Authentication.Bypass

Description

This indicates an attack attempt to exploit an Authentication Bypass vulnerability in Cisco Secure ACS.
The vulnerability is caused by an improper validation of user supplied data when the vulnerable application handles a maliciously crafted request. An attacker can exploit this to bypass authentication process and gain unauthorized access to the affected application.

Affected Products

Cisco Secure ACS version 5.1
Cisco Secure ACS version 5.2

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor
https://www.cisco.com/c/en/us/support/docs/csa/cisco-sa-20110330-acs.html