Details of VAR-200205-0038

ID

VAR-200205-0038

CVE

CVE-2002-0241

TITLE

Cisco Secure ACS NDS Medium failure / Prevent users from still being able to verify vulnerabilities

Trust: 0.6

sources: CNNVD: CNNVD-200205-103

DESCRIPTION

NDSAuth.DLL in Cisco Secure Authentication Control Server (ACS) 3.0.1 does not check the Expired or Disabled state of users in the Novell Directory Services (NDS), which could allow those users to authenticate to the server. Cisco Secure ACS is a highly scalable, high-performance access control server that runs on Windows NT/2000 operating systems and Unix variants. It operates as a centralized Remote Access Dial-In User Service (RADIUS) or TACACS+ server system and controls the authentication of users accessing resources through the network. An expired or disabled user who authenticates with the correct credentials will still be able to access the service. The normal, expected behavior is that their access to the service will be denied. It should be noted that only Cisco Secure ACS 3.01 for Windows NT is prone to this issue. The vulnerability is caused by the \"NDSAuth.DLL\" file, this module allows ACS authentication via an external NDS server. < *Link: http://www.cisco.com/warp/public/707/ciscosecure-acs-nds-authentication-vuln-pub.shtml* >

Trust: 1.26

sources: NVD: CVE-2002-0241 // BID: 4048 // VULHUB: VHN-4634

AFFECTED PRODUCTS

vendor:	cisco	model:	secure access control server	scope:	eq	version:	3.0.1	Trust: 1.6
vendor:	cisco	model:	secure acs for windows nt	scope:	eq	version:	3.0.1	Trust: 0.3

sources: BID: 4048 // CNNVD: CNNVD-200205-103 // NVD: CVE-2002-0241

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2002-0241
value:	HIGH
Trust: 1.0
CNNVD:	CNNVD-200205-103
value:	HIGH
Trust: 0.6
VULHUB:	VHN-4634
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2002-0241
severity:	HIGH
baseScore:	7.5
vectorString:	AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.0
VULHUB:	VHN-4634
severity:	HIGH
baseScore:	7.5
vectorString:	AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-4634 // CNNVD: CNNVD-200205-103 // NVD: CVE-2002-0241

PROBLEMTYPE DATA

problemtype:

NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2002-0241

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200205-103

TYPE

unknown

Trust: 0.6

sources: CNNVD: CNNVD-200205-103

EXTERNAL IDS

db:	BID	id:	4048	Trust: 2.0
db:	NVD	id:	CVE-2002-0241	Trust: 1.7
db:	CNNVD	id:	CNNVD-200205-103	Trust: 0.7
db:	XF	id:	8106	Trust: 0.6
db:	CISCO	id:	20020207 CISCO SECURE ACCESS CONTROL SERVER NOVELL DIRECTORY SERVICE EXPIRED/DISABLED USER AUTHENTICATION VULNERABILITY	Trust: 0.6
db:	VULHUB	id:	VHN-4634	Trust: 0.1

sources: VULHUB: VHN-4634 // BID: 4048 // CNNVD: CNNVD-200205-103 // NVD: CVE-2002-0241

REFERENCES

url:	http://www.securityfocus.com/bid/4048	Trust: 2.7
url:	http://www.cisco.com/warp/public/707/ciscosecure-acs-nds-authentication-vuln-pub.shtml	Trust: 2.7
url:	http://www.iss.net/security_center/static/8106.php	Trust: 2.7

sources: VULHUB: VHN-4634 // CNNVD: CNNVD-200205-103 // NVD: CVE-2002-0241

CREDITS

This vulnerability was publicized in a Cisco Security Advisory on February 7th, 2002.

Trust: 0.3

sources: BID: 4048

SOURCES

db:	VULHUB	id:	VHN-4634
db:	BID	id:	4048
db:	CNNVD	id:	CNNVD-200205-103
db:	NVD	id:	CVE-2002-0241

LAST UPDATE DATE

2024-11-22T23:13:30.591000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-4634	date:	2008-09-05T00:00:00
db:	BID	id:	4048	date:	2002-02-07T00:00:00
db:	CNNVD	id:	CNNVD-200205-103	date:	2005-05-02T00:00:00
db:	NVD	id:	CVE-2002-0241	date:	2024-11-20T23:38:38.040

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-4634	date:	2002-05-29T00:00:00
db:	BID	id:	4048	date:	2002-02-07T00:00:00
db:	CNNVD	id:	CNNVD-200205-103	date:	2002-02-07T00:00:00
db:	NVD	id:	CVE-2002-0241	date:	2002-05-29T04:00:00