February 10th, 2002, 01:47 AM
Vulnerability: Cisco Secure ACS NDS Expired/Disabled User Authentication
Cisco Secure ACS NDS Expired/Disabled User Authentication Vulnerability
A vulnerability has been discovered in Cisco Secure ACS for Windows NT that have been configured for NDS (Novell Directory Services).
Users in the NDS database whose accounts have expired or been disabled may still successfully authenticate with the service. An expired or disabled user who authenticates with the correct credentials will still be able to access the service. The normal, expected behavior is that their access to the service will be denied.
It should be noted that only Cisco Secure ACS 3.01 for Windows NT is prone to this issue.
Exploit: There is no exploit required.
Solution: Cisco realesed a patch at http://www.cisco.com/pcgi-bin/tablebuild.pl/cs-acs-win
February 10th, 2002, 01:49 AM
I don't see how things this easy go unnoticed during the software production. If the user's account is disabled or expired, the only natural thing to do would be to not allow any type of authentication. These kinds of common sense things that large companies overlook are horrible.
February 10th, 2002, 01:58 AM
hahah some people just cant see past their noses...
too much "wow im so good" ego.. lolz
February 10th, 2002, 02:01 AM
lol, I know man, for real.