Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-5382

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2007-5382
Last Modified 07 Mar 2011 10:00:36
Published 11 Oct 2007 09:17:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-5382

Summary

The conversion utility for converting CiscoWorks Wireless LAN Solution Engine (WLSE) 4.1.91.0 and earlier to Cisco Wireless Control System (WCS) creates administrator accounts with default usernames and passwords, which allows remote attackers to gain privileges.

Vulnerable Systems

Application

  • Cisco Wireless Lan Solution Engine 4.1.91.0


References

VUPEN - ADV-2007-3456

BID - 26000

CISCO - 20071010 Cisco Wireless Control System Conversion Utility Adds Default Password

OSVDB - 37936

XF - ciscowcs-default-password-admin-account(37053)

SECTRACK - 1018797


Last Updated: 27 May 2016 10:46:10