Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-1554

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2002-1554
Last Modified 05 Sep 2008 04:30:54
Published 31 Mar 2003 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2002-1554

Summary

Cisco ONS15454 and ONS15327 running ONS before 3.4 stores usernames and passwords in cleartext in the image database for the TCC, TCC+ or XTC, which could allow attackers to gain privileges by obtaining the passwords from the image database or a backup.

Vulnerable Systems

Operating System

  • Cisco Ons 15327 3.0

  • Cisco Ons 15327 3.1

  • Cisco Ons 15327 3.2

  • Cisco Ons 15327 3.3

  • Cisco Ons 15454 Optical Transport Platform 3.0

  • Cisco Ons 15454 Optical Transport Platform 3.1.0

  • Cisco Ons 15454 Optical Transport Platform 3.2.0

  • Cisco Ons 15454 Optical Transport Platform 3.3


References

BID - 6078

XF - cisco-ons-plaintext-accounts(10506)

CISCO - 20021031 Cisco ONS15454 and Cisco ONS15327 Vulnerabilities


Last Updated: 27 May 2016 10:37:23