Vulnerabilities > CVE-2004-0391 - Unspecified vulnerability in Cisco products
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Cisco Wireless LAN Solution Engine (WLSE) 2.0 through 2.5 and Hosting Solution Engine (HSE) 1.7 through 1.7.3 have a hardcoded username and password, which allows remote attackers to add new users, modify existing users, and change configuration.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 6 | |
| Hardware | 5 |
References
- http://www.ciac.org/ciac/bulletins/o-111.shtml
- http://www.ciac.org/ciac/bulletins/o-111.shtml
- http://www.cisco.com/warp/public/707/cisco-sa-20040407-username.shtml
- http://www.cisco.com/warp/public/707/cisco-sa-20040407-username.shtml
- http://www.kb.cert.org/vuls/id/659228
- http://www.kb.cert.org/vuls/id/659228
- http://www.securityfocus.com/bid/10076
- http://www.securityfocus.com/bid/10076
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15773
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15773