This indicates an attempt to exploit a buffer-overflow vulnerability in Cisco Secure Access Control Server (ACS) for Windows.
The vulnerability is in the User-Changeable Password (UCP) application, a set of CGI programs and web site contents installed on Microsoft IIS. The CGI program "CSUserCGI.exe" is vulnerable to multiple buffer overflows that occur
before the authentication process. A remote attacker can exploit these to gain control of vulnerable systems.
Cisco ACS UCP versions older than 4.2.
System Compromise: remote attackers can gain control of vulnerable systems.
Update to Cisco ACS UCP version 4.2. See the Cisco Advisory for information on how to obtain updated software at the following URL: