Skip to main content

Cisco issues patch to plug password security flaws

posted onNovember 8, 2012
by l33tdawg

Cisco has issued a patch to address a security flaw whoch could allow an attacker to bypass password protections in its Access Control System (ACS) platform.

The company said that the update would install a revision to the ACS platform, specifically the handling of the TACAS+ security protocol.

Cisco said that the flaw would potentially allow an attacker to use a specific set of characters in combination with a valid account name to cause a crash which lets the attacker bypass the authentication process and access the target system. The company noted that while an attacker would need a valid user name, the technique could be used on any system with the vulnerable component.

Source

Tags

Cisco Security

You May Also Like

Recent News

Friday, November 8th

Friday, November 1st

Tuesday, July 9th

Wednesday, July 3rd

Friday, June 28th

Thursday, June 27th

Thursday, June 13th

Wednesday, June 12th

Tuesday, June 11th

Friday, June 7th