The Cisco Security Monitoring, Analysis and Response System (CS-MARS) 6.0.4 and previous versions stores cleartext passwords in log/sysbacktrace.## files within error-logs.tar.gz archives, which allows context-dependent malicious users to obtain sensitive information by reading these files.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cisco cs-mars 4.1 |
||
cisco cs-mars |
||
cisco cs-mars 4.1.3 |
||
cisco cs-mars 4.1.2 |
||
cisco cs-mars 4.1.5 |