fkie_cve-2003-0982
Vulnerability from fkie_nvd
Published
2004-01-05 05:00
Modified
2025-04-03 01:03
Severity ?
Summary
Buffer overflow in the authentication module for Cisco ACNS 4.x before 4.2.11, and 5.x before 5.0.5, allows remote attackers to execute arbitrary code via a long password.
References
cve@mitre.orghttp://secunia.com/advisories/10409
cve@mitre.orghttp://www.cisco.com/warp/public/707/cisco-sa-20031210-ACNS-auth.shtmlPatch, Vendor Advisory
cve@mitre.orghttp://www.kb.cert.org/vuls/id/352462US Government Resource
cve@mitre.orghttp://www.securityfocus.com/bid/9187Patch, Vendor Advisory
cve@mitre.orghttps://exchange.xforce.ibmcloud.com/vulnerabilities/13945
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/10409
af854a3a-2127-422b-91ae-364da2661108http://www.cisco.com/warp/public/707/cisco-sa-20031210-ACNS-auth.shtmlPatch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://www.kb.cert.org/vuls/id/352462US Government Resource
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/9187Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/13945
Impacted products
Vendor Product Version
cisco application_and_content_networking_software 4.0.3
cisco application_and_content_networking_software 4.1.1
cisco application_and_content_networking_software 4.1.3
cisco application_and_content_networking_software 4.2
cisco application_and_content_networking_software 4.2.7
cisco application_and_content_networking_software 4.2.9
cisco application_and_content_networking_software 5.0
cisco application_and_content_networking_software 5.0.1
cisco application_and_content_networking_software 5.0.3
cisco content_distribution_manager_4630 *
cisco content_distribution_manager_4630 4.0
cisco content_distribution_manager_4630 4.1
cisco content_distribution_manager_4650 *
cisco content_distribution_manager_4650 4.0
cisco content_distribution_manager_4650 4.1
cisco content_distribution_manager_4670 *
cisco content_engine 507
cisco content_engine 507_2.2_.0
cisco content_engine 507_3.1
cisco content_engine 507_4.0
cisco content_engine 507_4.1
cisco content_engine 560
cisco content_engine 560_2.2_.0
cisco content_engine 560_3.1
cisco content_engine 560_4.0
cisco content_engine 560_4.1
cisco content_engine 590
cisco content_engine 590_2.2_.0
cisco content_engine 590_3.1
cisco content_engine 590_4.0
cisco content_engine 590_4.1
cisco content_engine 7320
cisco content_engine 7320_2.2_.0
cisco content_engine 7320_3.1
cisco content_engine 7320_4.0
cisco content_engine 7320_4.1
cisco content_engine_module for_cisco_router_2600_series
cisco content_engine_module for_cisco_router_3600_series
cisco content_engine_module for_cisco_router_3700_series
cisco enterprise_content_delivery_network_software 4.0
cisco enterprise_content_delivery_network_software 4.1
cisco content_router_4430 *
cisco content_router_4450 *


To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:cisco:application_and_content_networking_software:4.0.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "6C11A917-8173-4266-8098-687A96937C10",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:application_and_content_networking_software:4.1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "4DBF9A68-C8CA-4AB8-B831-89E63D1CCF0E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:application_and_content_networking_software:4.1.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "60D8DB6E-ED9E-4981-9DF3-7CD268E455B8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:application_and_content_networking_software:4.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "BAFC2175-854C-4C6F-BBA3-22B130391DB8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:application_and_content_networking_software:4.2.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "C89D5B75-0262-43BC-915B-144DEF76F012",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:application_and_content_networking_software:4.2.9:*:*:*:*:*:*:*",
              "matchCriteriaId": "6385CE52-78E9-401A-9CA4-D7DACCAB8F43",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:application_and_content_networking_software:5.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "7FE863AC-3902-4BD2-90A8-12E4D19E63F6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:application_and_content_networking_software:5.0.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "66527B05-A7BE-4582-A458-4EBB9F7B7E18",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:application_and_content_networking_software:5.0.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "C2711B21-43C2-4EF9-BEFD-F0B4450E86BF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:content_distribution_manager_4630:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "71568B23-8055-4625-A13C-E5B9032DEEA6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:content_distribution_manager_4630:4.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "EC79750C-9CA0-4A9F-BF18-06BEF13A3F98",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:content_distribution_manager_4630:4.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "E6766073-A568-4299-B528-3F29C5D9A421",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:content_distribution_manager_4650:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "0F368653-EF5E-43EB-93CB-1CCD0FFD6FFB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:content_distribution_manager_4650:4.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "5F52DDF6-B959-4221-834E-2371DF46BD4B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:content_distribution_manager_4650:4.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "4E842071-A161-4F02-B0CC-D3A6582D9930",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:content_distribution_manager_4670:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "A3DE3F02-3223-4CB9-81FB-87CA0DD1B914",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:content_engine:507:*:*:*:*:*:*:*",
              "matchCriteriaId": "2B947FCA-35E1-4F88-A8EA-7C90BBA0294F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:content_engine:507_2.2_.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "AF48646D-F72D-4236-ABC5-A37ACA801973",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:content_engine:507_3.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "B7705CE1-4982-45AF-8CB1-271225180BAE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:content_engine:507_4.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "DDF9A0A5-3107-44F6-9383-A2FFE15377AC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:content_engine:507_4.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "97C1B960-F088-4486-BB87-37BBD713F184",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:content_engine:560:*:*:*:*:*:*:*",
              "matchCriteriaId": "ADA1C53F-0548-47ED-8C81-534D621BC00B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:content_engine:560_2.2_.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "096CEE42-5DF7-4661-A908-B598DE27032E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:content_engine:560_3.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "85526696-0617-45E2-B2DA-8AAB05F0E255",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:content_engine:560_4.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "F6EB111F-D6C5-4906-8316-A317B27BC599",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:content_engine:560_4.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "D3FF8F15-7851-4052-B353-76251BB55F77",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:content_engine:590:*:*:*:*:*:*:*",
              "matchCriteriaId": "5362FE38-A346-4959-B1B6-E4E981BF2292",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:content_engine:590_2.2_.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "BADA2500-631D-429C-8F2E-CEF687B1CE20",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:content_engine:590_3.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "49C0C24A-36A3-4C25-9279-3E2F495AA59D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:content_engine:590_4.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "359CA948-212B-49F1-A659-7E8FC2E6F845",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:content_engine:590_4.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "C84BE6AF-044E-46D6-94F4-6A9F665F62CD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:content_engine:7320:*:*:*:*:*:*:*",
              "matchCriteriaId": "A2C96FD2-7C6B-4526-A3EE-0CE578526B00",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:content_engine:7320_2.2_.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "3DE7E43C-4ACC-403D-AE2C-D42BD51C1F0D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:content_engine:7320_3.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "41E0ADD3-EF9C-4904-83D8-AAB9729A33C5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:content_engine:7320_4.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "2A206212-F490-4A31-989F-C2F4A01B1DD1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:content_engine:7320_4.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "EA3940DE-75B0-41BF-A6B3-4D01091D7A79",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:content_engine_module:for_cisco_router_2600_series:*:*:*:*:*:*:*",
              "matchCriteriaId": "35B4109D-A187-4970-92C3-D8538C7F1AB0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:content_engine_module:for_cisco_router_3600_series:*:*:*:*:*:*:*",
              "matchCriteriaId": "525F7DA9-7464-4DFD-9D1F-5A35319B4C7C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:content_engine_module:for_cisco_router_3700_series:*:*:*:*:*:*:*",
              "matchCriteriaId": "A1CC447F-7C04-488E-8F56-0BF9A16438DE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:enterprise_content_delivery_network_software:4.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "7C9A7E8B-B8A9-430B-8712-7CA4C60B349E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:enterprise_content_delivery_network_software:4.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "2721E909-0237-4633-BAE0-758A1357B23C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:content_router_4430:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "B5A3BF42-76DF-47E2-A7B4-FAC4D693F493",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:content_router_4450:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "AA736E0A-0D31-4869-892E-8875B6ACE4D6",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Buffer overflow in the authentication module for Cisco ACNS 4.x before 4.2.11, and 5.x before 5.0.5, allows remote attackers to execute arbitrary code via a long password."
    },
    {
      "lang": "es",
      "value": "Desbordamiento de b\u00fafer en el m\u00f3dulo de autenticaci\u00f3n de Cisco ACNS 4.x anteriores a 4.2.11, y 5.x anteriores a 5.0.5, permite a atacantes remotos ejecutar c\u00f3digo arbitrario mediante una contrase\u00f1a larga."
    }
  ],
  "id": "CVE-2003-0982",
  "lastModified": "2025-04-03T01:03:51.193",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 7.5,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": true,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2004-01-05T05:00:00.000",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/10409"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.cisco.com/warp/public/707/cisco-sa-20031210-ACNS-auth.shtml"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "US Government Resource"
      ],
      "url": "http://www.kb.cert.org/vuls/id/352462"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.securityfocus.com/bid/9187"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/13945"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/10409"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.cisco.com/warp/public/707/cisco-sa-20031210-ACNS-auth.shtml"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "US Government Resource"
      ],
      "url": "http://www.kb.cert.org/vuls/id/352462"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.securityfocus.com/bid/9187"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/13945"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.