CVE-2009-0742

2009-02-26T16:17:00
ID CVE-2009-0742
Type cve
Reporter cve@mitre.org
Modified 2009-02-27T05:00:00

Description

The username command in Cisco ACE Application Control Engine Module for Catalyst 6500 Switches and 7600 Routers and Cisco ACE 4710 Application Control Engine Appliance stores a cleartext password by default, which allows context-dependent attackers to obtain sensitive information. Note that CVE-2009-0742 is not referenced on the vendor advisory page at:

http://www.cisco.com/en/US/products/products_security_advisory09186a0080a7bc82.shtml