What is the severity of CVE-2004-1459?

CVE-2004-1459 is rated as a high severity vulnerability due to its potential to cause a denial of service attack.

How do I fix CVE-2004-1459?

To mitigate CVE-2004-1459, upgrade Cisco Secure Access Control Server to a version that includes the necessary patches.

What attacks can be performed using CVE-2004-1459?

CVE-2004-1459 allows remote attackers to send crafted LEAP authentication requests, leading to device crashes.

Which versions of Cisco software are affected by CVE-2004-1459?

CVE-2004-1459 impacts Cisco Secure Access Control Server versions 3.2, 3.0, 3.1, and 3.3.

Is Cisco Secure ACS Solution Engine affected by CVE-2004-1459?

Yes, Cisco Secure ACS Solution Engine is also vulnerable to CVE-2004-1459 when configured as a LEAP RADIUS proxy.

Vulnerability/
CVE-2004-1459

medium

CWE

NVD-CWE-Other

31/12/2004

13/2/2005

8/8/2024

CVE-2004-1459

First published: Fri Dec 31 2004(Updated: )

Cisco Secure Access Control Server (ACS) 3.2, when configured as a Light Extensible Authentication Protocol (LEAP) RADIUS proxy, allows remote attackers to cause a denial of service (device crash) via certain LEAP authentication requests.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Cisco Secure Access Control Server	=3.2
Cisco Secure ACS Solution Engine
Cisco Secure Access Control Server	=3.3\(1\)
Cisco Secure Access Control Server	=3.0
Cisco Secure Access Control Server	=3.1
Cisco Secure Access Control Server	=3.2
Cisco Secure Access Control Server	=3.3
Cisco Secure Access Control Server	=3.2\(3\)
Cisco Secure Access Control Server	=3.2\(1\)
Cisco Secure Access Control Server	=3.2\(2\)
Cisco Secure Access Control Server	=3.0
Cisco Secure Access Control Server	=3.1
Cisco Secure Access Control Server	=3.2
Cisco Secure Access Control Server	=3.2
Cisco Secure Access Control Server	=3.2\(1\)
Cisco Secure Access Control Server	=3.2\(2\)
Cisco Secure Access Control Server	=3.2\(3\)
Cisco Secure Access Control Server	=3.3
Cisco Secure Access Control Server	=3.3\(1\)
Cisco Secure ACS Solution Engine

Remedy

http://www.cisco.com/warp/public/707/cisco-sa-20040825-acs.shtml

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2004-1459?
CVE-2004-1459 is rated as a high severity vulnerability due to its potential to cause a denial of service attack.
How do I fix CVE-2004-1459?
To mitigate CVE-2004-1459, upgrade Cisco Secure Access Control Server to a version that includes the necessary patches.
What attacks can be performed using CVE-2004-1459?
CVE-2004-1459 allows remote attackers to send crafted LEAP authentication requests, leading to device crashes.
Which versions of Cisco software are affected by CVE-2004-1459?
CVE-2004-1459 impacts Cisco Secure Access Control Server versions 3.2, 3.0, 3.1, and 3.3.
Is Cisco Secure ACS Solution Engine affected by CVE-2004-1459?
Yes, Cisco Secure ACS Solution Engine is also vulnerable to CVE-2004-1459 when configured as a LEAP RADIUS proxy.

agent/type
agent/first-publish-date
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/author
agent/weakness
agent/references
agent/remedy
agent/last-modified-date
agent/severity
agent/description
agent/event
agent/source
agent/tags
collector/nvd-historical
agent/software-canonical-lookup-request
collector/nvd-index
vendor/cisco
canonical/cisco secure access control server
version/cisco secure access control server/3.2
canonical/cisco secure acs solution engine
version/cisco secure access control server/3.3\(1\)
version/cisco secure access control server/3.0
version/cisco secure access control server/3.1
version/cisco secure access control server/3.3
version/cisco secure access control server/3.2\(3\)
version/cisco secure access control server/3.2\(1\)
version/cisco secure access control server/3.2\(2\)