2 matches found
CVE-2002-1096
CVE-2002-1096 affects Cisco VPN 3000 Concentrator (2.2.x and 3.x before 3.5.1). The root cause is that user passwords are stored in plaintext inside HTML source code of the embedded web server, allowing restricted administrators to obtain passwords. Documents confirm the vulnerability and impacte...
Cisco VPN 3000 Concentrator HTML Source Plaintext User Password Disclosure (CSCdv88230, CSCdw22408)
The remote VPN concentrator discloses the passwords of its users in the source HTML of the embedded web server. This vulnerability is documented as Cisco bug ID CSCdv88230 and CSCdw22408. C Tenable Network Security, Inc. Thanks to Nicolas FISCHBACH [email protected] for his help Ref:...