CVE-2000-0368

Published: 2001-03-12

Last Modified: 2016-09-21

CVE Author: NIST National Vulnerability Database

CVE Assigner: cve@mitre.org

Summary

Classic Cisco IOS 9.1 and later allows attackers with access to the login prompt to obtain portions of the command history of previous users, which may allow the attacker to access sensitive data.

Analysis

Common Vulnerability Score System v2.0

Severity	Low
Base Score	2.1/10
Exploit Score	3.9/10
Access Vector	Local
Access Complexity	Low
Authentication	None
Impact Score	2.9/10
Confidentiality Impact	Partial
Availability Impact	None
Integrity Impact	None
Vector String	AV:L/AC:L/Au:N/C:P/I:N/A:N

Common Vulnerability Score System v3.1

NIST has not assigned a CVSSv3.1 Score.

Products Reported

CPE	Vulnerable	Start	Excluding
cpe:2.3:o:cisco:ios::::::::	Yes	-	-

References

http://www.ciac.org/ciac/bulletins/j-009.shtml
http://www.cisco.com/warp/public/770/ioshist-pub.shtml

CVE ID

CVE-2000-0368

Published

2001-03-12

Modified

2016-09-21

CVSSv2.0

Low

PCI Compliance

Pass

US-CERT Alert

CWE

CWE-200

You never have to pay for a vulnerability scanning and management software again.

Tired of paying a subscription 'per asset' or 'per IP'? Well you can officially cancel your current subscription. Mageni provides a free, open source and enterprise-ready vulnerability scanning and management platform which helps you to find, prioritize, remediate and manage your vulnerabilities.

Vulnerabilities

Categories

CVE Database

Documentation

To perform a search, type a word and hit enter. Some suggestions are:

CVE-2000-0368

Published: 2001-03-12

Last Modified: 2016-09-21

CVE Author: NIST National Vulnerability Database

CVE Assigner: cve@mitre.org

You never have to pay for a vulnerability scanning and management software again.