CVE-2003-0732
First published: Thu Sep 04 2003(Updated: )
CiscoWorks Common Management Foundation (CMF) 2.1 and earlier allows the guest user to obtain restricted information and possibly gain administrative privileges by changing the "guest" user to the Admin user on the Modify or delete users pages.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Resource Manager | =2.1 | |
| Cisco Resource Manager | =1.0 | |
| Cisco Resource Manager | =2.2 | |
| Cisco Resource Manager | =2.0 | |
| Cisco Resource Manager | =1.1 | |
| CiscoWorks CD-One (CD1) | =4th | |
| CiscoWorks Common Management Foundation | =2.1 | |
| CiscoWorks CD-One (CD1) | =1st | |
| CiscoWorks CD-One (CD1) | =3rd | |
| CiscoWorks CD-One (CD1) | =2nd | |
| CiscoWorks CD-One (CD1) | =5th | |
| CiscoWorks Common Management Foundation | =2.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2003-0732?
CVE-2003-0732 is rated as a high severity vulnerability due to the potential for unauthorized access to administrative privileges.
How do I fix CVE-2003-0732?
To fix CVE-2003-0732, update your CiscoWorks Common Management Foundation to a version later than 2.1.
What types of systems are affected by CVE-2003-0732?
CVE-2003-0732 affects CiscoWorks Common Management Foundation versions 2.1 and earlier, as well as specific versions of Cisco Resource Manager and CiscoWorks CD-One.
Can a guest user exploit CVE-2003-0732?
Yes, a guest user can exploit CVE-2003-0732 to change privileges and gain access to restricted administrative information.
What should I do if my system is vulnerable to CVE-2003-0732?
If your system is vulnerable to CVE-2003-0732, it is recommended to apply the necessary patches and update to a secure version to mitigate risks.
- agent/references
- agent/type
- agent/weakness
- agent/author
- agent/remedy
- agent/severity
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-historical
- vendor/cisco
- product/resource manager essentials
- canonical/cisco resource manager essentials
- product/resource manager
- canonical/cisco resource manager
- product/ciscoworks cd1
- canonical/cisco ciscoworks cd1
- product/ciscoworks common management foundation
- canonical/cisco ciscoworks common management foundation
- agent/software-canonical-lookup-request
- collector/nvd-index
- version/cisco resource manager/2.1
- version/cisco resource manager/1.0
- version/cisco resource manager/2.2
- version/cisco resource manager/2.0
- version/cisco resource manager/1.1
- canonical/ciscoworks cd-one (cd1)
- version/ciscoworks cd-one (cd1)/4th
- canonical/ciscoworks common management foundation
- version/ciscoworks common management foundation/2.1
- version/ciscoworks cd-one (cd1)/1st
- version/ciscoworks cd-one (cd1)/3rd
- version/ciscoworks cd-one (cd1)/2nd
- version/ciscoworks cd-one (cd1)/5th
- version/ciscoworks common management foundation/2.0