Lumension® Endpoint Intelligence Center

Intelligence Center » News Archive » Default SSH keys expose Cisco's virtual security appliances

Default SSH keys expose Cisco's virtual security appliances

2015/06/26

Securityweek - (International) Cisco reported that customers using its Web Security, Email Security, and Security Management Virtual Appliances were vulnerable due to the products' use of default secure shell (SSH) keys, which could allow an unauthenticated, remote attacker to connect to a system with root user privileges. The company released a patch addressing the issue.

Source: http://www.securityweek.com/default-ssh-keys-expose-ciscos-virtual-security-appliances

Note: This news synopsis is taken from the DHS Daily Open Source Infrastructure Report, a daily [Monday through Friday, except US Federal holidays] summary of open-source published information concerning significant critical infrastructure issues; a 10-day archive of the DOSIR can be found at: http://www.dhs.gov/dhs-daily-open-source-infrastructure-report.


Last Updated: 27 May 2016 10:24:35