CVE-1999-1126

Cisco Resource Manager (CRM) 1.1 and earlier creates certain files with insecure permissions that allow local users to obtain sensitive configuration information including usernames, passwords, and SNMP community strings, from (1) swim_swd.log, (2) swim_debug.log, (3) dbi_debug.log, and (4) temporary files whose names begin with "DPR_".
Configurations

Configuration 1 (hide)

cpe:2.3:a:cisco:resource_manager:*:*:*:*:*:*:*:*

History

20 Nov 2024, 23:30

Type Values Removed Values Added
References () http://ciac.llnl.gov/ciac/bulletins/i-086.shtml - Patch, Vendor Advisory () http://ciac.llnl.gov/ciac/bulletins/i-086.shtml - Patch, Vendor Advisory
References () http://www.cisco.com/warp/public/770/crmtmp-pub.shtml - Patch, Vendor Advisory () http://www.cisco.com/warp/public/770/crmtmp-pub.shtml - Patch, Vendor Advisory
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/1575 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/1575 -

Information

Published : 1999-12-31 05:00

Updated : 2024-11-20 23:30


NVD link : CVE-1999-1126

Mitre link : CVE-1999-1126

CVE.ORG link : CVE-1999-1126


JSON object : View

Products Affected

cisco

  • resource_manager