Vulnerability Details : CVE-2007-0105
Stack-based buffer overflow in the CSAdmin service in Cisco Secure Access Control Server (ACS) for Windows before 4.1 and ACS Solution Engine before 4.1 allows remote attackers to execute arbitrary code via a crafted HTTP GET request.
Vulnerability category: OverflowExecute code
Products affected by CVE-2007-0105
- cpe:2.3:a:cisco:secure_access_control_server:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2007-0105
10.77%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 94 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2007-0105
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST |
References for CVE-2007-0105
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/31323
-
http://www.vupen.com/english/advisories/2007/0068
-
http://www.cisco.com/warp/public/707/cisco-sa-20070105-csacs.shtml
Vendor Advisory
-
http://www.securityfocus.com/bid/21900
-
http://www.kb.cert.org/vuls/id/744249
US Government Resource
-
http://securitytracker.com/id?1017475
Jump to