Vulnerability CVE-2003-0732


Published: 2003-10-20   Modified: 2012-02-12

Description:
CiscoWorks Common Management Foundation (CMF) 2.1 and earlier allows the guest user to obtain restricted information and possibly gain administrative privileges by changing the "guest" user to the Admin user on the Modify or delete users pages.

CVSS2 => (AV:N/AC:L/Au:N/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
10/10
10/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete
Affected software
Cisco -> Ciscoworks common management foundation 
Cisco -> Resource manager 
Cisco -> Resource manager essentials 
Cisco -> Ciscoworks cd1 

 References:
http://www.cisco.com/warp/public/707/cisco-sa-20030813-cmf.shtml
http://www.securityfocus.com/archive/1/333028

Copyright 2024, cxsecurity.com

 

Back to Top