First published: Thu Aug 27 2009(Updated: )
The Cisco Security Monitoring, Analysis and Response System (CS-MARS) 6.0.4 and earlier stores cleartext passwords in log/sysbacktrace.## files within error-logs.tar.gz archives, which allows context-dependent attackers to obtain sensitive information by reading these files.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Cisco Cs-mars | =4.1.5 | |
Cisco Cs-mars | =4.1.2 | |
Cisco Cs-mars | =4.1.3 | |
Cisco Cs-mars | <=6.0.4 | |
Cisco Cs-mars | =4.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.