Cisco Secure ACS EAP Parsing Vulnerability

A new Cisco ACS vulnerability is found by Gabriel Campana and Laurent Butti. Cisco Secure ACS does not correctly parse the length of EAP-Response packets which allows remote attackers to cause a denial of service and possibly execute arbitrary code. The affected products are all versions of Cisco Secure ACS that support EAP.