CVE-2015-6316

Currently unrated

Key Information:

Vendor: Cisco
Status: Mobility Services Engine
Vendor: CVE Published:; 6 November 2015

Summary

The default configuration of sshd_config in Cisco Mobility Services Engine (MSE) through 8.0.120.7 allows logins by the oracle account, which makes it easier for remote attackers to obtain access by entering this account's hardcoded password in an SSH session, aka Bug ID CSCuv40501.

References

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

http://www.securityfocus.com/bid/77432

vdb-entryx_refsource_BID

http://www.securitytracker.com/id/1034065

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Nov 6, 2015
Vulnerability Reserved
Aug 17, 2015