Unspecified vulnerability in Command EXEC in Cisco IOS allows local users to bypass command restrictions and obtain sensitive information via an unspecified "variation of an IOS command" involving "two different methods", aka CSCsk16129. NOTE: as of 20071016, the only disclosure is a vague pre-advisory with no actionable information. However, since it is from a well-known researcher, it is being assigned a CVE identifier for tracking purposes.
References
Configurations
History
21 Nov 2024, 00:38
Type | Values Removed | Values Added |
---|---|---|
References | () http://osvdb.org/45363 - | |
References | () http://www.irmplc.com/index.php/111-Vendor-Alerts - |
Information
Published : 2007-10-18 20:17
Updated : 2024-11-21 00:38
NVD link : CVE-2007-5549
Mitre link : CVE-2007-5549
CVE.ORG link : CVE-2007-5549
JSON object : View
Products Affected
cisco
- ios
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor