Default Password Vulnerability in Cisco Unified Videoconferencing System by Cisco
CVE-2010-3038

Currently unrated

Key Information:

Vendor: Cisco
Status: Unified Videoconferencing System 5110 Firmware; Unified Videoconferencing System 5115 Firmware; Unified Videoconferencing System 5110; Unified Videoconferencing System 5115
Vendor: CVE Published:; 22 November 2010

Summary

The Cisco Unified Videoconferencing System 5110 and 5115, when running on Linux, is susceptible to unauthorized access due to default passwords set for the root, cs, and develop accounts. This vulnerability allows remote attackers to obtain access via FTP or SSH daemons, potentially leading to further exploitation of the system.

References

http://www.trustmatta.com/advisories/MATTA-2010-001.txt

x_refsource_MISC

http://www.cisco.com/en/US/products/products_security_res...

vendor-advisoryx_refsource_CISCO

http://www.securitytracker.com/id?1024753

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Nov 22, 2010
Vulnerability Reserved
Aug 17, 2010