Lucene search

[email protected]CVE-2009-0620

HistoryFeb 26, 2009 - 4:17 p.m.

CVE-2009-0620

2009-02-2616:17:00

CWE-255

[email protected]

web.nvd.nist.gov

cve-2009-0620

cisco

ace

catalyst 6500

7600

default credentials

remote attackers

configuration changes

operating-system access

6.8 Medium

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.003 Low

EPSS

Percentile

69.2%

JSON

Cisco ACE Application Control Engine Module for Catalyst 6500 Switches and 7600 Routers before A2(1.1) uses default (1) usernames and (2) passwords for (a) the administrator and (b) web management, which makes it easier for remote attackers to perform configuration changes or obtain operating-system access.

CPENameOperatorVersion
cisco:application_control_engine_modulecisco application control engine modulele0

CPE	Name	Operator	Version
cisco:application_control_engine_module	cisco application control engine module	le	0

References

www.cisco.com/en/US/products/products_security_advisory09186a0080a7bc82.shtml

www.securityfocus.com/bid/33900

6.8 Medium

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.003 Low

EPSS

Percentile

69.2%

JSON

Related for CVE-2009-0620

prion1 seebug1 securityvulns2 cisco1 openvas1