CVE-2006-4097

critical

Description

Multiple unspecified vulnerabilities in the CSRadius service in Cisco Secure Access Control Server (ACS) for Windows before 4.1 and ACS Solution Engine before 4.1 allow remote attackers to cause a denial of service (crash) via a crafted RADIUS Access-Request packet. NOTE: it has been reported that at least one issue is a heap-based buffer overflow involving the Tunnel-Password attribute.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/31334

http://www.vupen.com/english/advisories/2007/0068

http://www.securityfocus.com/bid/21900

http://www.kb.cert.org/vuls/id/443108

http://www.cisco.com/warp/public/707/cisco-sa-20070105-csacs.shtml

http://securitytracker.com/id?1017475

http://secunia.com/advisories/23629

http://osvdb.org/36125

Details

Source: Mitre, NVD

Published: 2006-12-31

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 7.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C

Severity: High

CVSS v3

Base Score: 9.1

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

Severity: Critical

EPSS

EPSS: 0.01756