Lucene search

[email protected]CVE-2007-2032

HistoryApr 16, 2007 - 9:19 p.m.

CVE-2007-2032

2007-04-1621:19:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cisco

wcs

ftp

hard-coded password

remote attackers

security vulnerability

7.1 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.02 Low

EPSS

Percentile

88.7%

JSON

Cisco Wireless Control System (WCS) before 4.0.96.0 has a hard-coded FTP username and password for backup operations, which allows remote attackers to read and modify arbitrary files via unspecified vectors related to “properties of the FTP server,” aka Bug ID CSCse93014.

CPENameOperatorVersion
cisco:wireless_control_systemcisco wireless control systemeq4.0.95
cisco:wireless_control_systemcisco wireless control systemeq4.0

CPE	Name	Operator	Version
cisco:wireless_control_system	cisco wireless control system	eq	4.0.95
cisco:wireless_control_system	cisco wireless control system	eq	4.0

References

secunia.com/advisories/24865

securitytracker.com/id?1017907

www.cisco.com/warp/public/707/cisco-sa-20070412-wcs.shtml

www.osvdb.org/34132

www.securityfocus.com/bid/23460

www.vupen.com/english/advisories/2007/1367

exchange.xforce.ibmcloud.com/vulnerabilities/33614

7.1 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.02 Low

EPSS

Percentile

88.7%

JSON

Related for CVE-2007-2032

cvelist1 prion1 securityvulns1