VYPR
Unrated severityNVD Advisory· Published Aug 27, 2009· Updated Jun 16, 2026

CVE-2009-2977

CVE-2009-2977

Description

The Cisco Security Monitoring, Analysis and Response System (CS-MARS) 6.0.4 and earlier stores cleartext passwords in log/sysbacktrace.## files within error-logs.tar.gz archives, which allows context-dependent attackers to obtain sensitive information by reading these files.

Affected products

6
  • cpe:2.3:h:cisco:cs-mars:*:*:*:*:*:*:*:*+ 5 more
    • cpe:2.3:h:cisco:cs-mars:*:*:*:*:*:*:*:*range: <=6.0.4
    • cpe:2.3:h:cisco:cs-mars:4.1:*:*:*:*:*:*:*
    • cpe:2.3:h:cisco:cs-mars:4.1.2:*:*:*:*:*:*:*
    • cpe:2.3:h:cisco:cs-mars:4.1.3:*:*:*:*:*:*:*
    • cpe:2.3:h:cisco:cs-mars:4.1.5:*:*:*:*:*:*:*
    • (no CPE)range: <=6.0.4

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.