Sign-up

ID

VAR-200103-0029


CVE

CVE-2000-0368


TITLE

Classic Cisco IOS Access sensitive data vulnerability

Trust: 0.6

sources: CNNVD: CNNVD-200103-043

DESCRIPTION

Classic Cisco IOS 9.1 and later allows attackers with access to the login prompt to obtain portions of the command history of previous users, which may allow the attacker to access sensitive data. IOS is prone to a local security vulnerability. Vulnerabilities exist in Classic Cisco IOS 9.1 and later versions

Trust: 1.26

sources: NVD: CVE-2000-0368 // BID: 88326 // VULHUB: VHN-1947

AFFECTED PRODUCTS

vendor:ciscomodel:iosscope:lteversion:9.1

Trust: 1.0

vendor:ciscomodel:iosscope:eqversion:9.1

Trust: 0.9

sources: BID: 88326 // CNNVD: CNNVD-200103-043 // NVD: CVE-2000-0368

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2000-0368
value: LOW

Trust: 1.0

CNNVD: CNNVD-200103-043
value: LOW

Trust: 0.6

VULHUB: VHN-1947
value: LOW

Trust: 0.1

nvd@nist.gov: CVE-2000-0368
severity: LOW
baseScore: 2.1
vectorString: AV:L/AC:L/AU:N/C:P/I:N/A:N
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 3.9
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.0

VULHUB: VHN-1947
severity: LOW
baseScore: 2.1
vectorString: AV:L/AC:L/AU:N/C:P/I:N/A:N
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 3.9
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-1947 // CNNVD: CNNVD-200103-043 // NVD: CVE-2000-0368

PROBLEMTYPE DATA

problemtype:CWE-200

Trust: 1.1

sources: VULHUB: VHN-1947 // NVD: CVE-2000-0368

THREAT TYPE

local

Trust: 0.9

sources: BID: 88326 // CNNVD: CNNVD-200103-043

TYPE

information disclosure

Trust: 0.6

sources: CNNVD: CNNVD-200103-043

EXTERNAL IDS

db:NVDid:CVE-2000-0368

Trust: 2.0

db:CNNVDid:CNNVD-200103-043

Trust: 0.7

db:CISCOid:19981014 CISCO IOS COMMAND HISTORY RELEASE AT LOGIN PROMPT

Trust: 0.6

db:CIACid:J-009

Trust: 0.6

db:BIDid:88326

Trust: 0.4

db:VULHUBid:VHN-1947

Trust: 0.1

sources: VULHUB: VHN-1947 // BID: 88326 // CNNVD: CNNVD-200103-043 // NVD: CVE-2000-0368

REFERENCES

url:http://www.ciac.org/ciac/bulletins/j-009.shtml

Trust: 2.0

url:http://www.cisco.com/warp/public/770/ioshist-pub.shtml

Trust: 2.0

sources: VULHUB: VHN-1947 // BID: 88326 // CNNVD: CNNVD-200103-043 // NVD: CVE-2000-0368

CREDITS

Unknown

Trust: 0.3

sources: BID: 88326

SOURCES

db:VULHUBid:VHN-1947
db:BIDid:88326
db:CNNVDid:CNNVD-200103-043
db:NVDid:CVE-2000-0368

LAST UPDATE DATE

2024-08-14T14:23:17.155000+00:00


SOURCES UPDATE DATE

db:VULHUBid:VHN-1947date:2016-09-21T00:00:00
db:BIDid:88326date:2001-03-12T00:00:00
db:CNNVDid:CNNVD-200103-043date:2005-05-02T00:00:00
db:NVDid:CVE-2000-0368date:2016-09-21T13:06:36.300

SOURCES RELEASE DATE

db:VULHUBid:VHN-1947date:2001-03-12T00:00:00
db:BIDid:88326date:2001-03-12T00:00:00
db:CNNVDid:CNNVD-200103-043date:2001-03-12T00:00:00
db:NVDid:CVE-2000-0368date:2001-03-12T05:00:00