Cisco Secure Access Control Server XML External Entity Information Disclosure Vulnerability

Bugtraq ID: 105289
Class: Design Error
CVE: CVE-2018-0414
Remote: Yes
Local: No
Published: Sep 05 2018 12:00AM
Updated: Sep 05 2018 12:00AM
Credit: Piotr Domirski
Vulnerable: Cisco Secure Access Control Server 5.3 40.8
Cisco Secure Access Control Server 5.8 Patch 9
Cisco Secure Access Control Server 5.7(0.15)
Cisco Secure Access Control Server 5.4
Cisco Secure Access Control Server 5.3
Cisco Secure Access Control Server 5.2.0.26.2
Cisco Secure Access Control Server 5.2.0.26.1
Cisco Secure Access Control Server 5.2.0.26 patch 9
Cisco Secure Access Control Server 5.2.0.26
Cisco Secure Access Control Server 5.2
Cisco Secure Access Control Server 5.1.0.44.5
Cisco Secure Access Control Server 5.1.0.44.4
Cisco Secure Access Control Server 5.1.0.44.3
Cisco Secure Access Control Server 5.1
Cisco Secure Access Control Server 5.0
Not Vulnerable: Cisco Secure Access Control Server 5.8 patch 10


 

Privacy Statement
Copyright 2010, SecurityFocus