CVE-2003-0982

3 documents3 sources

Severity

7.5HIGH

EPSS

5.9%

top 9.40%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Application AND Content Networking Software Cisco Content Distribution Manager 4630 Cisco Content Distribution Manager 4650 +3 more

Timeline

PublishedJan 5

Latest updateApr 29

Description

Buffer overflow in the authentication module for Cisco ACNS 4.x before 4.2.11, and 5.x before 5.0.5, allows remote attackers to execute arbitrary code via a long password.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages6 packages

▶NVDcisco/content_engine_modulefor_cisco_router_2600_series, for_cisco_router_3600_series, for_cisco_router_3700_series+2

▶NVDcisco/content_engine20 versions+19

▶NVDcisco/content_distribution_manager_46304.0, 4.1+1

▶NVDcisco/content_distribution_manager_46504.0, 4.1+1

▶NVDcisco/application_and_content_networking_software9 versions+8

Patches

Patch: www.cisco.com ↗Patch: www.securityfocus.com ↗Patch: www.cisco.com ↗

🔴Vulnerability Details

GHSA

GHSA-5v44-7w45-8m9w: Buffer overflow in the authentication module for Cisco ACNS 4↗2022-04-29

▶

CVEList

CVE-2003-0982: Buffer overflow in the authentication module for Cisco ACNS 4↗2003-12-11

▶