ID
VAR-200304-0180
TITLE
Cisco Catalyst CatOS Authentication Bypass Vulnerability
Trust: 0.3
sources:
BID: 7424
DESCRIPTION
A vulnerability has been reported for Cisco Catalyst switches that may result in unauthorized access to the enable level. The vulnerability exists due to the way the 'enable' mode is accessed through the switch. An attacker who is able to obtain command line access to a vulnerable switch is able to access 'enable' mode without a password.
Trust: 0.3
sources:
BID: 7424
AFFECTED PRODUCTS
| vendor: | cisco | model: | catalyst | scope: | eq | version: | 65007.5(1) | Trust: 0.3 |
| vendor: | cisco | model: | catalyst | scope: | eq | version: | 60007.5(1) | Trust: 0.3 |
| vendor: | cisco | model: | catalyst | scope: | eq | version: | 40007.5(1) | Trust: 0.3 |
| vendor: | cisco | model: | catalyst | scope: | ne | version: | 65007.6(1) | Trust: 0.3 |
| vendor: | cisco | model: | catalyst | scope: | ne | version: | 60007.6(1) | Trust: 0.3 |
| vendor: | cisco | model: | catalyst | scope: | ne | version: | 40007.6(1) | Trust: 0.3 |
sources:
BID: 7424
THREAT TYPE
network
Trust: 0.3
sources:
BID: 7424
TYPE
Design Error
Trust: 0.3
sources:
BID: 7424
EXTERNAL IDS
| db: | BID | id: | 7424 | Trust: 0.3 |
sources:
BID: 7424
REFERENCES
| url: | http://www.cisco.com/warp/public/707/cisco-sa-20030424-catos.shtml | Trust: 0.3 |
sources:
BID: 7424
CREDITS
Discovery of this vulnerability credited to Marco P. Rodrigues.
Trust: 0.3
sources:
BID: 7424
SOURCES
| db: | BID | id: | 7424 |
LAST UPDATE DATE
2022-05-17T02:03:01.550000+00:00
SOURCES UPDATE DATE
| db: | BID | id: | 7424 | date: | 2003-04-24T00:00:00 |
SOURCES RELEASE DATE
| db: | BID | id: | 7424 | date: | 2003-04-24T00:00:00 |