Oracle Database Vulnerability in Cisco Security Monitoring System
CVE-2006-3732

Currently unrated

Key Information:

Vendor: Cisco
Status: Cs-mars
Vendor: CVE Published:; 21 July 2006

Summary

The Cisco Security Monitoring, Analysis and Response System (CS-MARS) versions prior to 4.2.1 are affected by a vulnerability due to the presence of several default accounts and passwords associated with its Oracle database. This flaw allows attackers to gain unauthorized access to sensitive information, potentially compromising the integrity and confidentiality of the data managed by the system.

References

http://www.securityfocus.com/bid/19071

vdb-entryx_refsource_BID

http://www.cisco.com/warp/public/707/cisco-sa-20060719-ma...

vendor-advisoryx_refsource_CISCO

http://secunia.com/advisories/21118

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability published
Jul 21, 2006
Vulnerability Reserved
Jul 19, 2006