CVE-2007-4786 - OpenCVE

Cisco Adaptive Security Appliance (ASA) running PIX 7.0 before 7.0.7.1, 7.1 before 7.1.2.61, 7.2 before 7.2.2.34, and 8.0 before 8.0.2.11, when AAA is enabled, composes %ASA-5-111008 messages from the "test aaa" command with cleartext passwords and sends them over the network to a remote syslog server or places them in a local logging buffer, which allows context-dependent attackers to obtain sensitive information.

Attack Vector Adjacent Network

Attack Complexity High

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v3.0

Access Vector Adjacent Network

Access Complexity High

Authentication Single

Confidentiality Impact Complete

Integrity Impact None

Availability Impact None

AV:A/AC:H/Au:S/C:C/I:N/A:N

Vendors & Products
CPE Configurations

Vendors	Products
Cisco	Adaptive Security Appliance Software

Configuration 1 [-]

OR	cpe:2.3:o:cisco:adaptive_security_appliance_software::::::::
	cpe:2.3:o:cisco:adaptive_security_appliance_software::::::::
	cpe:2.3:o:cisco:adaptive_security_appliance_software::::::::
	cpe:2.3:o:cisco:adaptive_security_appliance_software::::::::

References

Link	Resource
http://osvdb.org/37499	Broken Link
http://secunia.com/advisories/26677	Broken Link Third Party Advisory
http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method=fetchBugDetails&bugId=CSCsj72903	Broken Link Vendor Advisory
http://www.kb.cert.org/vuls/id/563673	Third Party Advisory US Government Resource
http://www.kb.cert.org/vuls/id/MIMG-74ZK93	Third Party Advisory US Government Resource
http://www.securityfocus.com/bid/25548	Broken Link Third Party Advisory VDB Entry
http://www.securitytracker.com/id?1018660	Broken Link Third Party Advisory VDB Entry
http://www.vupen.com/english/advisories/2007/3076	Broken Link Third Party Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/36473	Third Party Advisory VDB Entry

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2007-09-10T21:00:00

Updated: 2017-07-28T12:57:01

Reserved: 2007-09-10T00:00:00

Link: CVE-2007-4786

JSON object: View

NVD Information

Status : Analyzed

Published: 2007-09-10T21:17:00.000

Modified: 2024-02-13T16:09:38.673

Link: CVE-2007-4786

JSON object: View

Redhat Information

No data.

CWE

CWE-319

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2007-09-05T00:00:00", "descriptions": [{"lang": "en", "value": "Cisco Adaptive Security Appliance (ASA) running PIX 7.0 before 7.0.7.1, 7.1 before 7.1.2.61, 7.2 before 7.2.2.34, and 8.0 before 8.0.2.11, when AAA is enabled, composes %ASA-5-111008 messages from the \"test aaa\" command with cleartext passwords and sends them over the network to a remote syslog server or places them in a local logging buffer, which allows context-dependent attackers to obtain sensitive information."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-07-28T12:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "26677", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/26677"}, {"name": "1018660", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id?1018660"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.kb.cert.org/vuls/id/MIMG-74ZK93"}, {"name": "cisco-asa-aaa-information-disclosure(36473)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36473"}, {"name": "37499", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/37499"}, {"name": "25548", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/25548"}, {"tags": ["x_refsource_MISC"], "url": "http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method=fetchBugDetails&bugId=CSCsj72903"}, {"name": "VU#563673", "tags": ["third-party-advisory", "x_refsource_CERT-VN"], "url": "http://www.kb.cert.org/vuls/id/563673"}, {"name": "ADV-2007-3076", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2007/3076"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2007-4786", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Cisco Adaptive Security Appliance (ASA) running PIX 7.0 before 7.0.7.1, 7.1 before 7.1.2.61, 7.2 before 7.2.2.34, and 8.0 before 8.0.2.11, when AAA is enabled, composes %ASA-5-111008 messages from the \"test aaa\" command with cleartext passwords and sends them over the network to a remote syslog server or places them in a local logging buffer, which allows context-dependent attackers to obtain sensitive information."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "26677", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/26677"}, {"name": "1018660", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id?1018660"}, {"name": "http://www.kb.cert.org/vuls/id/MIMG-74ZK93", "refsource": "CONFIRM", "url": "http://www.kb.cert.org/vuls/id/MIMG-74ZK93"}, {"name": "cisco-asa-aaa-information-disclosure(36473)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36473"}, {"name": "37499", "refsource": "OSVDB", "url": "http://osvdb.org/37499"}, {"name": "25548", "refsource": "BID", "url": "http://www.securityfocus.com/bid/25548"}, {"name": "http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method=fetchBugDetails&bugId=CSCsj72903", "refsource": "MISC", "url": "http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method=fetchBugDetails&bugId=CSCsj72903"}, {"name": "VU#563673", "refsource": "CERT-VN", "url": "http://www.kb.cert.org/vuls/id/563673"}, {"name": "ADV-2007-3076", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2007/3076"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2007-4786", "datePublished": "2007-09-10T21:00:00", "dateReserved": "2007-09-10T00:00:00", "dateUpdated": "2017-07-28T12:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:*:*:*:*:*:*:*:*", "matchCriteriaId": "811E0923-F14A-4084-B4DB-B64B5BA10C54", "versionEndExcluding": "7.0.7.1", "versionStartIncluding": "7.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:*:*:*:*:*:*:*:*", "matchCriteriaId": "50EC755B-C160-4995-9F30-F452ADAEE5DD", "versionEndExcluding": "7.1.2.61", "versionStartIncluding": "7.1", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:*:*:*:*:*:*:*:*", "matchCriteriaId": "49229EBC-8A77-49A2-8068-840C96D15EC4", "versionEndExcluding": "7.2.2.34", "versionStartIncluding": "7.2", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:adaptive_security_appliance_software:*:*:*:*:*:*:*:*", "matchCriteriaId": "C7B867B4-0B4D-44B7-9250-26A3A9505A98", "versionEndExcluding": "8.0.2.11", "versionStartIncluding": "8.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Cisco Adaptive Security Appliance (ASA) running PIX 7.0 before 7.0.7.1, 7.1 before 7.1.2.61, 7.2 before 7.2.2.34, and 8.0 before 8.0.2.11, when AAA is enabled, composes %ASA-5-111008 messages from the \"test aaa\" command with cleartext passwords and sends them over the network to a remote syslog server or places them in a local logging buffer, which allows context-dependent attackers to obtain sensitive information."}, {"lang": "es", "value": "Cisco Adaptive Security Appliance (ASA) funcionando en PIX 7.0 anterior a 7.0.7.1, 7.1 anterior a 7.1.2.61, 7.2 anterior a 7.2.2.34, y 8.0 before 8.0.2.11, when AAA is enabled, escribe mensajes %ASA-5-111008 desde el comando \"test aaa\" con contrase\u00f1as en texto plano y env\u00eda las mismas a trav\u00e9s de la red a un servidor de registros del sistema remoto o los coloca en un b\u00fafer local de validaci\u00f3n, lo caul permite a atacantes dependientes del contexto obtener informaci\u00f3n sensible."}], "id": "CVE-2007-4786", "lastModified": "2024-02-13T16:09:38.673", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "HIGH", "accessVector": "ADJACENT_NETWORK", "authentication": "SINGLE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "COMPLETE", "integrityImpact": "NONE", "vectorString": "AV:A/AC:H/Au:S/C:C/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 2.5, "impactScore": 6.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "NONE", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 1.6, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2007-09-10T21:17:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Broken Link"], "url": "http://osvdb.org/37499"}, {"source": "cve@mitre.org", "tags": ["Broken Link", "Third Party Advisory"], "url": "http://secunia.com/advisories/26677"}, {"source": "cve@mitre.org", "tags": ["Broken Link", "Vendor Advisory"], "url": "http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method=fetchBugDetails&bugId=CSCsj72903"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/563673"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/MIMG-74ZK93"}, {"source": "cve@mitre.org", "tags": ["Broken Link", "Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/25548"}, {"source": "cve@mitre.org", "tags": ["Broken Link", "Third Party Advisory", "VDB Entry"], "url": "http://www.securitytracker.com/id?1018660"}, {"source": "cve@mitre.org", "tags": ["Broken Link", "Third Party Advisory"], "url": "http://www.vupen.com/english/advisories/2007/3076"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "VDB Entry"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36473"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-319"}], "source": "nvd@nist.gov", "type": "Primary"}]}