Free and open-source vulnerability scanner

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

CVE-2001-1037

Published

23 years ago

Last Modified

5 years ago

CVSSv2.0 Severity

Medium

Impact Analysis

Share on Facebook
Share on LinkedIn
Share on Twitter

Cisco SN 5420 Storage Router 1.1(3) and earlier allows local users to access a developer's shell without a password and execute certain restricted commands without being logged..

CVSSv2.0 Score

Severity: Medium
Base Score: 4.6/10
Exploit Score: 3.9/10
Access Vector: Local
Access Complexity: Low
Authentication Required: None
Impact Score: 6.4/10
Confidentiality Impact: Partial
Availability Impact: Partial
Integrity Impact: Partial

Products Affected

CPE	Affected	Vulnerable	Excluding	Edit
cpe:2.3:o:cisco:sn_5420_storage_router_firmware:1.1\(2\)::	Yes	-	-
cpe:2.3:o:cisco:sn_5420_storage_router_firmware:1.1\(3\)::	Yes	-	-

References

http://www.cisco.com/warp/public/707/SN-kernel-pub.html
http://www.securityfocus.com/bid/3131
http://www.osvdb.org/1917
https://exchange.xforce.ibmcloud.com/vulnerabilities/6827