Positive Technologies researchers Mikhail Klyuchnikov and Yury Aleynov have been credited with the discovery of the flaw. The vulnerability has been fixed in Cisco Secure ACS 5.8.0.32.9 Cumulative Patch.
#Secure access acs Patch
Its exploitation potential is lesser on Cisco Secure ACS systems running release 5.8 Patch 7 or Patch 8, as it the user needs to be authenticated to pull off the compromise. It affects all releases of Cisco Secure ACS prior to release 5.8 patch 9. An attacker could exploit this vulnerability by sending a crafted serialized Java object,” the company explained. “The vulnerability is due to insecure deserialization of user-supplied content by the affected software. The vulnerability (CVE-2018-0147) in the Cisco Secure Access Control System can be exploited remotely by an unauthenticated attacker and can be used to achieve remote code execution with root privileges.
It affects only version 11.6 of the software, and has been now fixed in releases 12.1 and later. And so the flaw is deemed to be critical. While the vulnerability can’t be exploited remotely and only allows low-privilege access, “there are extenuating circumstances that allow an attacker to elevate privileges to root,” they noted.
#Secure access acs full
After low-level privileges are gained, the attacker could elevate to root privileges and take full control of the device,” the company explained. A successful exploit could allow the attacker to access the underlying operating system as a low-privileged user. “An attacker could exploit this vulnerability by connecting to the affected system via Secure Shell (SSH) using the hard-coded credentials. The vulnerability (CVE-2018-0141) in the Cisco Prime Collaboration Provisioning software was found during internal security testing and is due to a hard-coded account password on the system. Cisco has pushed out fixes for security vulnerabilities in a wide variety of its products, including two critical flaws in its Secure Access Control System (ACS) and its Prime Collaboration Provisioning (PCP) software.
0 kommentar(er)
