Lucene search
HistoryOct 10, 2001 - 4:00 a.m.
CVE-2001-1098
CVSS2
2.1
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.3
Confidence
Low
EPSS
0
Percentile
5.3%
Cisco PIX firewall manager (PFM) 4.3(2)g logs the enable password in plaintext in the pfm.log file, which could allow local users to obtain the password by reading the file.
Affected configurations
Node
ciscopix_firewall_managerMatch4.3\(2\)g
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cisco | pix_firewall_manager | 4.3(2)g | cpe:2.3:a:cisco:pix_firewall_manager:4.3\(2\)g:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2001-1098
2004-09-01 04:00:00
cert
cert
Cisco PIX Firewall Manager stores enable password in plain text
2001-10-12 00:00:00
cve
cve
CVE-2001-1098
2004-09-01 04:00:00
CVSS2
2.1
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.3
Confidence
Low
EPSS
0
Percentile
5.3%
Related for NVD:CVE-2001-1098