Solved: Patching ACS 3.2 due to HTML Security Fix

tgrundbacher · ‎09-01-2004

According to advisory

http://www.cisco.com/warp/public/707/cisco-sa-20040825-acs.shtml

there is a security flaw with the HTML interface of listed ACS versions.

We're running ACS 3.2.1 for some customers and would like to apply a fix for this issue.

Although the advisory says which version of ACS one should upgrade to, I couldn't figure out which upgrade method is appropriate.

- install a complete, fixed ACS Software, or

- download the HTML_Inteface_Security_Fix_v3.2.3.zip file, which contains two files. Problem: no readme file or manual how to install these files. When I try to copy them into my running ACS folders, it doesn't work, since the files are locked.

Why is this file available for download?

Thanks for any help.

Toni

o-ziltener · ‎09-09-2004

Please check to download area for the fix again. There you find now a readme file how to do it.

best regards

Oliver

View solution in original post

karl.jones · ‎09-03-2004

...

tgrundbacher · ‎09-05-2004

Please, can anybody help on this subject.

o-ziltener · ‎09-09-2004

Please check to download area for the fix again. There you find now a readme file how to do it.

best regards

Oliver

tgrundbacher · ‎09-09-2004

Hi Oliver

Thanks for your answer! Swiss helps Swiss ;)

Cheers

Toni