CVE-2002-0241
First published: Wed May 29 2002(Updated: )
NDSAuth.DLL in Cisco Secure Authentication Control Server (ACS) 3.0.1 does not check the Expired or Disabled state of users in the Novell Directory Services (NDS), which could allow those users to authenticate to the server.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Secure Access Control Server | =3.0.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2002-0241?
CVE-2002-0241 is considered a medium severity vulnerability due to its potential impact on user authentication.
How do I fix CVE-2002-0241?
To fix CVE-2002-0241, update to a patched version of Cisco Secure Access Control Server that addresses this vulnerability.
What systems are affected by CVE-2002-0241?
CVE-2002-0241 affects Cisco Secure Access Control Server version 3.0.1 on Windows NT.
What type of vulnerability is CVE-2002-0241?
CVE-2002-0241 is an authentication vulnerability that allows expired or disabled users to gain access.
What might an attacker gain by exploiting CVE-2002-0241?
An attacker could gain unauthorized access to resources by exploiting CVE-2002-0241 if they have valid expired or disabled user credentials.
- collector/nvd-historical
- collector/nvd-index
- agent/type
- agent/softwarecombine
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/remedy
- agent/weakness
- agent/severity
- agent/references
- agent/last-modified-date
- agent/tags
- agent/event
- agent/description
- agent/source
- vendor/cisco
- canonical/cisco secure access control server
- version/cisco secure access control server/3.0.1