CVE-2000-1056 Information

Description

CiscoSecure ACS Server 2.4(2) and earlier allows remote attackers to bypass LDAP authentication on the server if the LDAP server allows null passwords.

Reference

http://www.cisco.com/warp/public/707/csecureacsnt-pub.shtml http://www.securityfocus.com/bid/1708 https://exchange.xforce.ibmcloud.com/vulnerabilities/5274