Lucene search
HistorySep 01, 2004 - 4:00 a.m.
CVE-2001-1098
cisco
pix firewall manager
4.3(2)g
password
plaintext
pfm
nvd
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
6.4 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.3%
Cisco PIX firewall manager (PFM) 4.3(2)g logs the enable password in plaintext in the pfm.log file, which could allow local users to obtain the password by reading the file.
Affected configurations
Node
ciscopix_firewall_managerMatch4.3\(2\)g
| CPE | Name | Operator | Version |
|---|---|---|---|
| cisco:pix_firewall_manager | cisco pix firewall manager | eq | 4.3\(2\)g |
Related
cert
cert
Cisco PIX Firewall Manager stores enable password in plain text
2001-10-12 00:00:00
cvelist
cvelist
CVE-2001-1098
2004-09-01 04:00:00
nvd
nvd
CVE-2001-1098
2001-10-10 04:00:00
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
6.4 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.3%
Related for CVE-2001-1098