Vulnerabilities > CVE-2000-0955 - Remote Username and Password Retrieval vulnerability in Cisco Virtual Central Office 4000 5.1.3

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
cisco
exploit available

Summary

Cisco Virtual Central Office 4000 (VCO/4K) uses weak encryption to store usernames and passwords in the SNMP MIB, which allows an attacker who knows the community name to crack the password and gain privileges.

Vulnerable Configurations

Part Description Count
Application
Cisco
1

Exploit-Db

descriptionCisco Virtual Central Office 4000 (VCO/4K) 5.1.3 Remote Username and Password Retrieval. CVE-2000-0955. Remote exploit for hardware platform
idEDB-ID:20372
last seen2016-02-02
modified2000-10-26
published2000-10-26
reporter@stake
sourcehttps://www.exploit-db.com/download/20372/
titleCisco Virtual Central Office 4000 VCO/4K 5.1.3 - Remote Username and Password Retrieval