Cleartext Password Exposure in Cisco CS-MARS Products
CVE-2009-2977

Currently unrated

Key Information:

Vendor: Cisco
Status: Cs-mars
Vendor: CVE Published:; 27 August 2009

What is CVE-2009-2977?

The Cisco Security Monitoring, Analysis and Response System (CS-MARS) version 6.0.4 and earlier versions expose sensitive cleartext passwords by storing them in the log/sysbacktrace files located within error-logs.tar.gz archives. This vulnerability allows context-dependent attackers to access these log files, potentially compromising sensitive information. Organizations using the affected versions should take immediate steps to secure their log files and review access controls to mitigate risks associated with this exposure.

References

http://www.securityfocus.com/bid/36098

vdb-entryx_refsource_BID

http://www.vupen.com/english/advisories/2009/2364

vdb-entryx_refsource_VUPEN

http://www.securityfocus.com/archive/1/505998/100/0/threaded

mailing-listx_refsource_BUGTRAQ

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 27, 2009
Vulnerability Reserved
Aug 27, 2009