ID
VAR-200004-0027
CVE
CVE-2000-0267
TITLE
Cisco Catalyst Enable Password Bypass Vulnerability
Trust: 0.9
DESCRIPTION
Cisco Catalyst 5.4.x allows a user to gain access to the "enable" mode without a password. This can be done either from the console itself or via a remote Telnet session
Trust: 1.26
AFFECTED PRODUCTS
| vendor: | cisco | model: | catos | scope: | eq | version: | 5.4\(1\) | Trust: 1.6 |
| vendor: | cisco | model: | catalyst | scope: | eq | version: | 65005.4.1 | Trust: 0.3 |
| vendor: | cisco | model: | catalyst | scope: | eq | version: | 60005.4.1 | Trust: 0.3 |
| vendor: | cisco | model: | catalyst | scope: | eq | version: | 55005.4.1 | Trust: 0.3 |
| vendor: | cisco | model: | catalyst | scope: | eq | version: | 50005.4.1 | Trust: 0.3 |
| vendor: | cisco | model: | catalyst | scope: | eq | version: | 40005.4.1 | Trust: 0.3 |
CVSS
SEVERITY | CVSSV2 | CVSSV3 | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
PROBLEMTYPE DATA
| problemtype: | NVD-CWE-Other | Trust: 1.0 |
THREAT TYPE
local
Trust: 0.6
TYPE
access verification error
Trust: 0.6
EXTERNAL IDS
| db: | BID | id: | 1122 | Trust: 2.0 |
| db: | OSVDB | id: | 1288 | Trust: 1.7 |
| db: | NVD | id: | CVE-2000-0267 | Trust: 1.7 |
| db: | CNNVD | id: | CNNVD-200004-054 | Trust: 0.7 |
| db: | CISCO | id: | 20000419 CISCO CATALYST ENABLE PASSWORD BYPASS VULNERABILITY | Trust: 0.6 |
| db: | VULHUB | id: | VHN-1846 | Trust: 0.1 |
REFERENCES
| url: | http://www.securityfocus.com/bid/1122 | Trust: 1.7 |
| url: | http://www.cisco.com/warp/public/707/catos-enable-bypass-pub.shtml | Trust: 1.7 |
| url: | http://www.osvdb.org/1288 | Trust: 1.7 |
| url: | http://www.cisco.com/warp/public/707/sec_incident_response.shtml | Trust: 0.3 |
| url: | - | Trust: 0.1 |
CREDITS
This vulnerability was announced by Cisco in a security advisory posted to the Bugtraq mailing list on April 19, 2000. The Cisco BugID for this issue is: CSCdr10025
Trust: 0.9
SOURCES
| db: | VULHUB | id: | VHN-1846 |
| db: | BID | id: | 1122 |
| db: | CNNVD | id: | CNNVD-200004-054 |
| db: | NVD | id: | CVE-2000-0267 |
LAST UPDATE DATE
2024-08-14T14:16:24.694000+00:00
SOURCES UPDATE DATE
| db: | VULHUB | id: | VHN-1846 | date: | 2008-09-10T00:00:00 |
| db: | BID | id: | 1122 | date: | 2000-04-20T00:00:00 |
| db: | CNNVD | id: | CNNVD-200004-054 | date: | 2005-10-12T00:00:00 |
| db: | NVD | id: | CVE-2000-0267 | date: | 2008-09-10T19:03:47.807 |
SOURCES RELEASE DATE
| db: | VULHUB | id: | VHN-1846 | date: | 2000-04-20T00:00:00 |
| db: | BID | id: | 1122 | date: | 2000-04-20T00:00:00 |
| db: | CNNVD | id: | CNNVD-200004-054 | date: | 2000-04-20T00:00:00 |
| db: | NVD | id: | CVE-2000-0267 | date: | 2000-04-20T04:00:00 |