ID

VAR-199912-0007


CVE

CVE-1999-1042


TITLE

Cisco Resource Manager Information disclosure vulnerability

Trust: 0.6

sources: CNNVD: CNNVD-199912-174

DESCRIPTION

Cisco Resource Manager (CRM) 1.0 and 1.1 creates world-readable log files and temporary files, which may expose sensitive information, to local users such as user IDs, passwords and SNMP community strings. Cisco Resource Manager is prone to a information disclosure vulnerability. Attackers can exploit this issue to gain access to sensitive information

Trust: 1.26

sources: NVD: CVE-1999-1042 // BID: 87012 // VULHUB: VHN-1023

AFFECTED PRODUCTS

vendor:ciscomodel:resource managerscope:eqversion:1.1

Trust: 1.9

vendor:ciscomodel:resource managerscope:eqversion:1.0

Trust: 1.9

sources: BID: 87012 // CNNVD: CNNVD-199912-174 // NVD: CVE-1999-1042

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-1999-1042
value: LOW

Trust: 1.0

CNNVD: CNNVD-199912-174
value: LOW

Trust: 0.6

VULHUB: VHN-1023
value: LOW

Trust: 0.1

nvd@nist.gov: CVE-1999-1042
severity: LOW
baseScore: 1.2
vectorString: AV:L/AC:H/AU:N/C:P/I:N/A:N
accessVector: LOCAL
accessComplexity: HIGH
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 1.9
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.0

VULHUB: VHN-1023
severity: LOW
baseScore: 1.2
vectorString: AV:L/AC:H/AU:N/C:P/I:N/A:N
accessVector: LOCAL
accessComplexity: HIGH
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 1.9
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-1023 // CNNVD: CNNVD-199912-174 // NVD: CVE-1999-1042

PROBLEMTYPE DATA

problemtype:NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-1999-1042

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-199912-174

TYPE

unknown

Trust: 0.6

sources: CNNVD: CNNVD-199912-174

EXTERNAL IDS

db:NVDid:CVE-1999-1042

Trust: 2.0

db:CNNVDid:CNNVD-199912-174

Trust: 0.7

db:CISCOid:19980813 CRM TEMPORARY FILE VULNERABILITY

Trust: 0.6

db:BIDid:87012

Trust: 0.4

db:VULHUBid:VHN-1023

Trust: 0.1

sources: VULHUB: VHN-1023 // BID: 87012 // CNNVD: CNNVD-199912-174 // NVD: CVE-1999-1042

REFERENCES

url:http://www.cisco.com/warp/public/770/crmtmp-pub.shtml

Trust: 3.0

url:http://www.cisco.com/

Trust: 0.3

sources: VULHUB: VHN-1023 // BID: 87012 // CNNVD: CNNVD-199912-174 // NVD: CVE-1999-1042

CREDITS

Unknown

Trust: 0.3

sources: BID: 87012

SOURCES

db:VULHUBid:VHN-1023
db:BIDid:87012
db:CNNVDid:CNNVD-199912-174
db:NVDid:CVE-1999-1042

LAST UPDATE DATE

2024-11-22T23:00:11.686000+00:00


SOURCES UPDATE DATE

db:VULHUBid:VHN-1023date:2008-09-05T00:00:00
db:BIDid:87012date:1999-12-31T00:00:00
db:CNNVDid:CNNVD-199912-174date:2005-10-20T00:00:00
db:NVDid:CVE-1999-1042date:2024-11-20T23:30:08.790

SOURCES RELEASE DATE

db:VULHUBid:VHN-1023date:1999-12-31T00:00:00
db:BIDid:87012date:1999-12-31T00:00:00
db:CNNVDid:CNNVD-199912-174date:1999-12-31T00:00:00
db:NVDid:CVE-1999-1042date:1999-12-31T05:00:00