CVE Vulnerability

CVE-2007-5382

The conversion utility for converting CiscoWorks Wireless LAN Solution Engine (WLSE) 4.1.91.0 and earlier to Cisco Wireless Control System (WCS) creates administrator accounts with default usernames and passwords, which allows remote attackers to gain privileges.

10 /10

CVSS v2.0 :

V3 Legend

Vector :

Exploitability : 10 / Impact : 10

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

Scope

References
Link Resource
http://www.cisco.com/en/US/products/products_security_advisory09186a00808d72db.shtml
http://www.securityfocus.com/bid/26000
http://www.securitytracker.com/id?1018797
http://osvdb.org/37936
http://www.vupen.com/english/advisories/2007/3456
https://exchange.xforce.ibmcloud.com/vulnerabilities/37053
Configurations

Configuration 1

cpe:2.3:a:cisco:wireless_lan_solution_engine:*:*:*:*:*:*:*:*
cpe:2.3:h:cisco:wireless_control_system:4.1.91.0:*:*:*:*:*:*:*
Information

Published : 2007-10-12 01:17

Updated : 2017-07-29 01:33

NVD link : CVE-2007-5382

Mitre link : CVE-2007-5382

Products Affected
No products.
CWE
CWE-264