Vulnerabilities > CVE-2010-4303 - Credentials Management vulnerability in Cisco products
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
NONE Availability impact
NONE Summary
Cisco Unified Videoconferencing (UVC) System 5110 and 5115, when the Linux operating system is used, uses world-readable permissions for the /etc/shadow file, which allows local users to discover encrypted passwords by reading this file, aka Bug ID CSCti54043.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 | |
Hardware | 2 | |
OS | 1 |