← back
CVE-1999-1126

CVE-1999-1126

EPSS 0.4%
Cisco Resource Manager (CRM) 1.1 and earlier creates certain files with insecure permissions that allow local users to obtain sensitive configuration information including usernames, passwords, and SNMP community strings, from (1) swim_swd.log, (2) swim_debug.log, (3) dbi_debug.log, and (4) temporary files whose names begin with "DPR_".
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://ciac.llnl.gov/ciac/bulletins/i-086.shtmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/1575http://www.cisco.com/warp/public/770/crmtmp-pub.shtml