Cisco Resource Manager 1.0

CPE Details

Cisco Resource Manager 1.0
cisco
resource_manager
1.0
2007-08-23
19h16 +00:00
2007-09-14
15h36 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:cisco:resource_manager:1.0:*:*:*:*:*:*:*

Informations

Vendor

cisco

Product

resource_manager

Version

1.0

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2003-0731 2003-09-04 04h00 +00:00 CiscoWorks Common Management Foundation (CMF) 2.1 and earlier allows the guest user to gain administrative privileges via a certain POST request to com.cisco.nm.cmf.servlet.CsAuthServlet, possibly involving the "cmd" parameter with a modifyUser value and a modified "priviledges" parameter.
10
CVE-2003-0732 2003-09-04 04h00 +00:00 CiscoWorks Common Management Foundation (CMF) 2.1 and earlier allows the guest user to obtain restricted information and possibly gain administrative privileges by changing the "guest" user to the Admin user on the Modify or delete users pages.
10
CVE-1999-1042 2001-09-12 02h00 +00:00 Cisco Resource Manager (CRM) 1.0 and 1.1 creates world-readable log files and temporary files, which may expose sensitive information, to local users such as user IDs, passwords and SNMP community strings.
1.2
CVE-1999-1126 2001-09-12 02h00 +00:00 Cisco Resource Manager (CRM) 1.1 and earlier creates certain files with insecure permissions that allow local users to obtain sensitive configuration information including usernames, passwords, and SNMP community strings, from (1) swim_swd.log, (2) swim_debug.log, (3) dbi_debug.log, and (4) temporary files whose names begin with "DPR_".
2.1