Vulnerabilities > CVE-2007-2032 - Multiple vulnerability in Cisco Wireless Control System 4.0/4.0.95
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Cisco Wireless Control System (WCS) before 4.0.96.0 has a hard-coded FTP username and password for backup operations, which allows remote attackers to read and modify arbitrary files via unspecified vectors related to "properties of the FTP server," aka Bug ID CSCse93014.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Hardware | 2 |
References
- http://secunia.com/advisories/24865
- http://securitytracker.com/id?1017907
- http://www.cisco.com/warp/public/707/cisco-sa-20070412-wcs.shtml
- http://www.osvdb.org/34132
- http://www.securityfocus.com/bid/23460
- http://www.vupen.com/english/advisories/2007/1367
- https://exchange.xforce.ibmcloud.com/vulnerabilities/33614