PT-2001-2241 · Cisco · Cisco Pix Firewall Manager

Published

2001-10-10

Updated

2017-10-10

CVE-2001-1098

CVSS v2.0

2.1

Low

Vector

AV:L/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Cisco PIX firewall manager (PFM) version 4.3(2)g

Description The issue allows local users to obtain the enable password by reading the pfm.log file, as it logs the enable password in plaintext.

Recommendations For Cisco PIX firewall manager (PFM) version 4.3(2)g, consider restricting access to the pfm.log file to minimize the risk of exploitation.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2001-1098

Affected Products

Cisco Pix Firewall Manager

PT-2001-2241 · Cisco · Cisco Pix Firewall Manager

CVE-2001-1098

Related Identifiers

Affected Products

References · 5