CVE-2001-0444
First published: Mon Jul 02 2001(Updated: )
Cisco CBOS 2.3.0.053 sends output of the "sh nat" (aka "show nat") command to the terminal of the next user who attempts to connect to the router via telnet, which could allow that user to obtain sensitive information.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco CBOS | =2.4.1 | |
| Cisco CBOS | =2.3.053 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2001-0444?
CVE-2001-0444 is classified as a moderate severity vulnerability due to the potential exposure of sensitive information.
How do I fix CVE-2001-0444?
To fix CVE-2001-0444, upgrade Cisco CBOS to version 2.4.1 or apply any patches released by Cisco for the affected versions.
What software versions are affected by CVE-2001-0444?
CVE-2001-0444 affects Cisco CBOS versions 2.3.053 and 2.4.1.
What type of information could be exposed by CVE-2001-0444?
CVE-2001-0444 could expose sensitive network address translation (NAT) information to the next user connecting via telnet.
Is CVE-2001-0444 exploitable remotely?
Yes, CVE-2001-0444 can be exploited remotely by any user who connects to the affected router via telnet.
- agent/references
- agent/first-publish-date
- agent/softwarecombine
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/severity
- agent/weakness
- agent/author
- agent/event
- agent/description
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- vendor/cisco
- canonical/cisco cbos
- version/cisco cbos/2.3.053
- version/cisco cbos/2.4.1