A bug in Cisco's Secure ACS could allow an attacker to take control of a company's security infrastructure A potentially critical vulnerability has been found in Cisco Systems' Secure Access Control Server (ACS) for Windows servers, which is used to control devices such as routers in large networks.
The buffer overflow glitch may allow an attacker to seize control of the Cisco service, when running on Windows. The Unix variant is not affected. Exploitation of the flaw could result in a malicious hacker gaining full control of a target company's security infrastructure, leaving them completely exposed, should they be using ACS to control it.
The ACS system is used to control routers, firewalls, VPNs, VoIP systems, wireless networks, as well as to provision access policies to users.
View: Cisco Security Advisory
View: The full story
News source: ZDNet UK