Vulnerability Description
The on-line help system options in Cisco routers allows non-privileged users without "enabled" access to obtain sensitive information via the show command.
CVSS Score
2.1
LOW
AV:L/AC:L/Au:N/C:P/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Ios | 9.14 |
| Cisco | Router 2500 | All versions |
| Cisco | Router 2600 | All versions |
| Cisco | Router 3600 | All versions |
| Cisco | Router 4000 | All versions |
| Cisco | Router 7200 | All versions |
| Cisco | Router 7500 | All versions |
References
- http://www.securityfocus.com/bid/1161ExploitPatchVendor Advisory
- http://www.securityfocus.com/templates/archive.pike?list=1&msg=20000502222246.28
- http://www.securityfocus.com/bid/1161ExploitPatchVendor Advisory
- http://www.securityfocus.com/templates/archive.pike?list=1&msg=20000502222246.28
FAQ
What is CVE-2000-0345?
CVE-2000-0345 is a vulnerability with a CVSS score of 2.1 (LOW). The on-line help system options in Cisco routers allows non-privileged users without "enabled" access to obtain sensitive information via the show command.
How severe is CVE-2000-0345?
CVE-2000-0345 has been rated LOW with a CVSS base score of 2.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2000-0345?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Ios, Cisco Router 2500, Cisco Router 2600, Cisco Router 3600, Cisco Router 4000.