← CVECheck
HomeVulnerabilities

CVE-2002-0159 — HIGH severity vulnerability (Format string vulnerability in the administration function i)

Format string vulnerability in the administration function in Cisco Secure Access Control Server (ACS) for Windows, 2.6.x and earlier and 3.x through 3.01 (build 40), allows remote attackers to crash the CSADMIN module only (denial of service of administration function) or execute arbitrary code via format strings in t

CVE IDCVE-2002-0159
SeverityHIGH
CVSS score7.5
CVSS vectorAV:N/AC:L/Au:N/C:P/I:P/A:P
CWECWE-134
StatusModified
Published2002-04-22
Last modified2026-04-16
DescriptionFormat string vulnerability in the administration function in Cisco Secure Access Control Server (ACS) for Windows, 2.6.x and earlier and 3.x through 3.01 (build 40), allows remote attackers to crash the CSADMIN module only (denial of service of administration function) or execute arbitrary code via format strings in the URL to port 2002.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →