Cisco Access Control Server Remote Denial of Service Vulnerability (CVE-2015-0746)
Cisco Access Control Server Remote Denial of Service Vulnerability (CVE-2015-0746)
Release date:
Updated on:
Affected Systems:
Cisco Access Control Server 5.5 (0.46.2)
Description:
Bugtraq id: 74771
CVE (CAN) ID: CVE-2015-0746
Cisco Secure Access Control System is an Access policy Control platform.
In Cisco Access Control Server (ACS) 5.5 (0.46.2), the rest api has a remote denial of service vulnerability. Remote attackers can exploit this vulnerability to cause denial of service by sending many requests.
<* Source: Cisco
*>
Suggestion:
Vendor patch:
Cisco
-----
Currently, the vendor does not provide patches or upgrade programs. We recommend that users who use the software follow the vendor's homepage to obtain the latest version:
Http://tools.cisco.com/security/center/viewAlert.x? AlertId = 38946
This article permanently updates the link address: