Authentication Bypass Vulnerability in Cisco Secure ACS 3.0.1

Authentication Bypass Vulnerability in Cisco Secure ACS 3.0.1

CVE-2002-0241 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

NDSAuth.DLL in Cisco Secure Authentication Control Server (ACS) 3.0.1 does not check the Expired or Disabled state of users in the Novell Directory Services (NDS), which could allow those users to authenticate to the server.

Learn more about our Cis Benchmark Audit For Cisco.