Vulnerabilities > CVE-2007-2282 - Unspecified vulnerability in Cisco Netflow Collection Engine
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Cisco Network Services (CNS) NetFlow Collection Engine (NFC) before 6.0 has an nfcuser account with the default password nfcuser, which allows remote attackers to modify the product configuration and, when installed on Linux, obtain login access to the host operating system.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 8 |
References
- http://www.cisco.com/en/US/products/products_security_advisory09186a008082c520.shtml
- http://www.securityfocus.com/bid/23647
- http://securitytracker.com/id?1017960
- http://www.kb.cert.org/vuls/id/127545
- http://www.vupen.com/english/advisories/2007/1545
- http://www.osvdb.org/35524
- https://exchange.xforce.ibmcloud.com/vulnerabilities/33861