Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 10/09/2007 Updated: 13/02/2024

CVSS v2 Base Score: 4.3 | Impact Score: 6.9 | Exploitability Score: 2.5

CVSS v3 Base Score: 5.3 | Impact Score: 3.6 | Exploitability Score: 1.6

VMScore: 383

Vector: AV:A/AC:H/Au:S/C:C/I:N/A:N

Subscribe to Adaptive Security Appliance Software

Cisco Adaptive Security Appliance (ASA) running PIX 7.0 prior to 7.0.7.1, 7.1 prior to 7.1.2.61, 7.2 prior to 7.2.2.34, and 8.0 prior to 8.0.2.11, when AAA is enabled, composes %ASA-5-111008 messages from the "test aaa" command with cleartext passwords and sends them over the network to a remote syslog server or places them in a local logging buffer, which allows context-dependent malicious users to obtain sensitive information.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco adaptive security appliance software

CWE-319 http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method=fetchBugDetails&bugId=CSCsj72903 http://www.kb.cert.org/vuls/id/MIMG-74ZK93 http://www.kb.cert.org/vuls/id/563673 http://www.securityfocus.com/bid/25548 http://secunia.com/advisories/26677 http://www.securitytracker.com/id?1018660 http://osvdb.org/37499 http://www.vupen.com/english/advisories/2007/3076 https://exchange.xforce.ibmcloud.com/vulnerabilities/36473 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2007-4786

Vulnerability Summary

References

Vulmon Search

About

Products

Connect