Vulnerabilities > CVE-2002-0241 - Authentication vulnerability in Cisco Secure Access Control Server 3.0.1
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
NDSAuth.DLL in Cisco Secure Authentication Control Server (ACS) 3.0.1 does not check the Expired or Disabled state of users in the Novell Directory Services (NDS), which could allow those users to authenticate to the server.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |