NVD

Id
12148  
Name
CVE-2010-0598  
Description
Cisco Mediator Framework 1.5.1 before 1.5.1.build.14-eng, 2.2 before 2.2.1.dev.1, and 3.0 before 3.0.9.release.1 on the Cisco Network Building Mediator NBM-2400 and NBM-4800 and the Richards-Zeta Mediator 2500 does not encrypt HTTP sessions from operator workstations, which allows remote attackers to discover Administrator credentials by sniffing the network, aka Bug ID CSCtb83631.  
Reject
 
CVSS Version
2  
CVSS Score
9.3  
Severity
High  
CVSS Base Score
9.3  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-18  
Published
2010-05-27  
Modified Date
2010-06-13  
Seq
2010-0598  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
66887 12148 CVE-2010-0598 1024027  View
66888 12148 CVE-2010-0598 20100526 Multiple Vulnerabilities in Cisco Network Building Mediator  View
66889 12148 CVE-2010-0598 VU#757804  View
66890 12148 CVE-2010-0598 http://www.us-cert.gov/control_systems/pdf/ICSA-10-147-01_Cisco_Network_Building_Mediator.pdf  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
35751 JVNDB-2010-001531 Cisco Mediator Framework における Administrator の認証情報を見破られる脆弱性 Cisco Network Building Mediator および Richards-Zeta Mediator 上で稼働している Cisco Mediator Framework には、オペレーターワークステーションからの HTTP セッションを暗号化しないため、Administrator の認証情報を見破られる脆弱性が存在します。 CVE-2010-0598 43178 CVE-2010-0598 12148 9.3 http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001531.html 2010-05-26 2010-06-16 View