CVE-2001-0444

Name of the Vulnerable Software and Affected Versions Cisco CBOS version 2.3.0.053

Description The issue allows sensitive information to be disclosed to unauthorized users. When the sh nat command, also known as show nat, is executed, its output is sent to the terminal of the next user who attempts to connect to the router via telnet. This could enable that user to obtain sensitive information.

Recommendations For Cisco CBOS version 2.3.0.053, consider restricting access to the sh nat command to minimize the risk of sensitive information disclosure until a fix is available. As a temporary workaround, restrict telnet connections to trusted users only.