Sign-up

ID

VAR-200908-0382


CVE

CVE-2009-2977


TITLE

Cisco Security Monitoring Analysis and Response System Password Information Disclosure Vulnerability

Trust: 0.9

sources: BID: 36098 // CNNVD: CNNVD-200908-447

DESCRIPTION

The Cisco Security Monitoring, Analysis and Response System (CS-MARS) 6.0.4 and earlier stores cleartext passwords in log/sysbacktrace.## files within error-logs.tar.gz archives, which allows context-dependent attackers to obtain sensitive information by reading these files. Cisco Security Monitoring, Analysis, and Response System (MARS) is prone to a local information-disclosure vulnerability. Local attackers can exploit this issue to obtain sensitive information that can aid in further attacks. This issue is being tracked by Cisco Bug CSCtb52450. Cisco Security MARS 6.0.4 and prior are vulnerable

Trust: 1.98

sources: NVD: CVE-2009-2977 // JVNDB: JVNDB-2009-002689 // BID: 36098 // VULHUB: VHN-40423

AFFECTED PRODUCTS

vendor:ciscomodel:cs-marsscope:eqversion:4.1.5

Trust: 1.9

vendor:ciscomodel:cs-marsscope:eqversion:4.1.2

Trust: 1.6

vendor:ciscomodel:cs-marsscope:eqversion:4.1

Trust: 1.6

vendor:ciscomodel:cs-marsscope:eqversion:4.1.3

Trust: 1.6

vendor:ciscomodel:cs-marsscope:lteversion:6.0.4

Trust: 1.0

vendor:ciscomodel:cs-marsscope:eqversion:6.0.4

Trust: 0.9

vendor:ciscomodel:security monitoring, analysis and response systemscope:lteversion:6.0.4

Trust: 0.8

vendor:nortelmodel:networks contivity vpn switchscope:eqversion:20004.1.3

Trust: 0.3

vendor:nortelmodel:networks contivity vpn switchscope:eqversion:20004.1.2

Trust: 0.3

vendor:nortelmodel:networks contivity vpn switchscope:eqversion:20004.1

Trust: 0.3

vendor:ciscomodel:security marsscope:eqversion:4.2.2

Trust: 0.3

vendor:ciscomodel:cs-marsscope:eqversion:4.2.3

Trust: 0.3

vendor:ciscomodel:cs-marsscope:eqversion:4.2.2

Trust: 0.3

vendor:ciscomodel:cs-marsscope:eqversion:4.2.1

Trust: 0.3

sources: BID: 36098 // JVNDB: JVNDB-2009-002689 // CNNVD: CNNVD-200908-447 // NVD: CVE-2009-2977

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2009-2977
value: LOW

Trust: 1.0

NVD: CVE-2009-2977
value: LOW

Trust: 0.8

CNNVD: CNNVD-200908-447
value: LOW

Trust: 0.6

VULHUB: VHN-40423
value: LOW

Trust: 0.1

nvd@nist.gov: CVE-2009-2977
severity: LOW
baseScore: 3.3
vectorString: AV:A/AC:L/AU:N/C:P/I:N/A:N
accessVector: ADJACENT_NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 6.5
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-40423
severity: LOW
baseScore: 3.3
vectorString: AV:A/AC:L/AU:N/C:P/I:N/A:N
accessVector: ADJACENT_NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 6.5
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-40423 // JVNDB: JVNDB-2009-002689 // CNNVD: CNNVD-200908-447 // NVD: CVE-2009-2977

PROBLEMTYPE DATA

problemtype:CWE-310

Trust: 1.9

sources: VULHUB: VHN-40423 // JVNDB: JVNDB-2009-002689 // NVD: CVE-2009-2977

THREAT TYPE

specific network environment

Trust: 0.6

sources: CNNVD: CNNVD-200908-447

TYPE

encryption problem

Trust: 0.6

sources: CNNVD: CNNVD-200908-447

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2009-002689

PATCH
title:Top Pageurl:http://www.cisco.com/web/JP/index.html
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2009-002689

EXTERNAL IDS
db:BIDid:36098
Trust: 2.8
db:NVDid:CVE-2009-2977
Trust: 2.5
db:VUPENid:ADV-2009-2364
Trust: 1.7
db:XFid:52913
Trust: 1.4
db:JVNDBid:JVNDB-2009-002689
Trust: 0.8
db:BUGTRAQid:20090821 CLEAR TEXT STORAGE OF PASSWORD IN CS-MARS V6.0.4 AND EARLIER
Trust: 0.6
db:BUGTRAQid:20090821 RE: CLEAR TEXT STORAGE OF PASSWORD IN CS-MARS V6.0.4 AND EARLIER
Trust: 0.6
db:CNNVDid:CNNVD-200908-447
Trust: 0.6
db:VULHUBid:VHN-40423
Trust: 0.1
sources:
            
            
            VULHUB: VHN-40423 // 
            
            
            
            BID: 36098 // 
            
            
            
            JVNDB: JVNDB-2009-002689 // 
            
            
            
            CNNVD: CNNVD-200908-447 // 
            
            
            
            NVD: CVE-2009-2977

REFERENCES
url:http://www.securityfocus.com/bid/36098
Trust: 2.5
url:http://www.vupen.com/english/advisories/2009/2364
Trust: 1.7
url:http://tools.cisco.com/support/bugtoolkit/search/getbugdetails.do?method=fetchbugdetails&bugid=csctb52450
Trust: 1.6
url:http://xforce.iss.net/xforce/xfdb/52913
Trust: 1.4
url:http://www.securityfocus.com/archive/1/505995/100/0/threaded
Trust: 1.1
url:http://www.securityfocus.com/archive/1/505998/100/0/threaded
Trust: 1.1
url:https://exchange.xforce.ibmcloud.com/vulnerabilities/52913
Trust: 1.1
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-2977
Trust: 0.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2009-2977
Trust: 0.8
url:http://www.securityfocus.com/archive/1/archive/1/505998/100/0/threaded
Trust: 0.6
url:http://www.securityfocus.com/archive/1/archive/1/505995/100/0/threaded
Trust: 0.6
url:http://www.cisco.com/en/us/products/ps6241/index.html
Trust: 0.3
url:/archive/1/505995
Trust: 0.3
url:/archive/1/505998
Trust: 0.3
url:http://tools.cisco.com/support/bugtoolkit/search/getbugdetails.do?method=fetchbugdetails&bugid=csctb52450
Trust: 0.1
sources:
            
            
            VULHUB: VHN-40423 // 
            
            
            
            BID: 36098 // 
            
            
            
            JVNDB: JVNDB-2009-002689 // 
            
            
            
            CNNVD: CNNVD-200908-447 // 
            
            
            
            NVD: CVE-2009-2977

CREDITS
Ryan Wessels
Trust: 0.9
sources:
            
            
            BID: 36098 // 
            
            
            
            CNNVD: CNNVD-200908-447

SOURCES
db:VULHUBid:VHN-40423
db:BIDid:36098
db:JVNDBid:JVNDB-2009-002689
db:CNNVDid:CNNVD-200908-447
db:NVDid:CVE-2009-2977

LAST UPDATE DATE
2025-04-10T23:22:14.220000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-40423date:2018-10-10T00:00:00
db:BIDid:36098date:2009-08-21T18:03:00
db:JVNDBid:JVNDB-2009-002689date:2011-09-21T00:00:00
db:CNNVDid:CNNVD-200908-447date:2009-08-28T00:00:00
db:NVDid:CVE-2009-2977date:2025-04-09T00:30:58.490

SOURCES RELEASE DATE
db:VULHUBid:VHN-40423date:2009-08-27T00:00:00
db:BIDid:36098date:2009-08-21T00:00:00
db:JVNDBid:JVNDB-2009-002689date:2011-09-21T00:00:00
db:CNNVDid:CNNVD-200908-447date:2009-08-27T00:00:00
db:NVDid:CVE-2009-2977date:2009-08-27T17:30:00.390