Classic Cisco IOS 9.1 and later allows attackers with access to the login prompt to obtain portions of the command history of previous users, which may allow the attacker to access sensitive data.
References
Link | Resource |
---|---|
http://www.ciac.org/ciac/bulletins/j-009.shtml | Patch Vendor Advisory |
http://www.cisco.com/warp/public/770/ioshist-pub.shtml | Patch Vendor Advisory |
http://www.ciac.org/ciac/bulletins/j-009.shtml | Patch Vendor Advisory |
http://www.cisco.com/warp/public/770/ioshist-pub.shtml | Patch Vendor Advisory |
Configurations
History
20 Nov 2024, 23:32
Type | Values Removed | Values Added |
---|---|---|
References | () http://www.ciac.org/ciac/bulletins/j-009.shtml - Patch, Vendor Advisory | |
References | () http://www.cisco.com/warp/public/770/ioshist-pub.shtml - Patch, Vendor Advisory |
Information
Published : 2001-03-12 05:00
Updated : 2024-11-20 23:32
NVD link : CVE-2000-0368
Mitre link : CVE-2000-0368
CVE.ORG link : CVE-2000-0368
JSON object : View
Products Affected
cisco
- ios
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor