Vulnerability Details CVE-2002-1491
The Cisco VPN 5000 Client for MacOS before 5.2.2 records the most recently used login password in plaintext when saving "Default Connection" settings, which could allow local users to gain privileges.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 54.8%
CVSS Severity
CVSS v2 Score 5.0
References
- http://www.cisco.com/warp/public/707/vpn5k-client-multiple-vuln-pub.shtml
- http://www.iss.net/security_center/static/10129.php
- http://www.osvdb.org/7041
- http://www.securityfocus.com/bid/5736
- http://www.cisco.com/warp/public/707/vpn5k-client-multiple-vuln-pub.shtml
- http://www.iss.net/security_center/static/10129.php
- http://www.osvdb.org/7041
- http://www.securityfocus.com/bid/5736
Products affected by CVE-2002-1491
-
cpe:2.3:a:cisco:vpn_5000_client:5.1.2
-
cpe:2.3:a:cisco:vpn_5000_client:5.2.1