Cleartext Password Storage Vulnerability in Cisco ACE Application Control Engine
CVE-2009-0742

Currently unrated

Key Information:

Vendor: Cisco
Status: Application Control Engine Module
Vendor: CVE Published:; 26 February 2009

Summary

The Cisco ACE Application Control Engine Modules and the Cisco ACE 4710 Application Control Engine Appliance are susceptible to a vulnerability that allows sensitive information to be accessed through the default storage of usernames in cleartext. This design flaw means that attackers with local access could potentially exploit this weakness to retrieve sensitive credentials, emphasizing the importance of implementing robust security measures to safeguard stored information.

References

http://www.cisco.com/en/US/products/products_security_adv...

vendor-advisoryx_refsource_CISCO

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Feb 26, 2009