CVE-2014-0678 Information

Description

The portal interface in Cisco Secure Access Control System (ACS) does not properly manage sessions which allows remote authenticated users to hijack sessions and gain privileges via unspecified vectors aka Bug ID CSCue65951.

Reference

http://osvdb.org/102558 http://secunia.com/advisories/56540 http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0678 http://tools.cisco.com/security/center/viewAlert.x?alertId=32567 http://www.securityfocus.com/bid/65144 http://www.securitytracker.com/id/1029688 https://exchange.xforce.ibmcloud.com/vulnerabilities/90732