Cisco Tac_Plus Accounting Directive Insecure File Creation Vulnerability

Bugtraq ID: 4003
Class: Access Validation Error
CVE: CVE-2002-0225
Remote: No
Local: Yes
Published: Jan 31 2002 12:00AM
Updated: Jul 11 2009 09:56AM
Credit: This vulnerability was announced by Kevin A. Nassery <kevin@nassery.org> via Bugtraq on January 30, 2002.
Vulnerable: Cisco tac_plus F4.0.4 alpha
- FreeBSD FreeBSD 4.4
- FreeBSD FreeBSD 4.3
- FreeBSD FreeBSD 4.2
- FreeBSD FreeBSD 4.1.1
- FreeBSD FreeBSD 4.1
- HP HP-UX 11.11
- HP HP-UX 11.0
- HP HP-UX 10.20
- Mandriva Linux Mandrake 8.1
- Mandriva Linux Mandrake 8.0
- Mandriva Linux Mandrake 7.2
- Mandriva Linux Mandrake 7.1
- Mandriva Linux Mandrake 7.0
- NetBSD NetBSD 1.5.2
- NetBSD NetBSD 1.5.1
- NetBSD NetBSD 1.5
- NetBSD NetBSD 1.4.3
- NetBSD NetBSD 1.4.2
- RedHat Linux 7.2 i386
- RedHat Linux 7.1 i386
- RedHat Linux 7.0 i386
- RedHat Linux 6.2 i386
- S.u.S.E. Linux 7.3 i386
- S.u.S.E. Linux 7.2 i386
- S.u.S.E. Linux 7.1 x86
- S.u.S.E. Linux 7.0 i386
- Slackware Linux 8.0
- Slackware Linux 7.1
- Sun Solaris 2.5.1 _x86
- Sun Solaris 2.5.1
- Sun Solaris 8_x86
- Sun Solaris 8_sparc
- Sun Solaris 7.0_x86
- Sun Solaris 7.0
- Sun Solaris 2.6_x86
- Sun Solaris 2.6
Not Vulnerable: Devrim Seral TACACS+ v9
Devrim Seral TACACS+ v8


 

Privacy Statement
Copyright 2010, SecurityFocus