Lucene search

[email protected]NVD:CVE-2007-2032

HistoryApr 16, 2007 - 9:19 p.m.

CVE-2007-2032

2007-04-1621:19:00

[email protected]

web.nvd.nist.gov

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.9

Confidence

Low

EPSS

0.018

Percentile

88.3%

JSON

Cisco Wireless Control System (WCS) before 4.0.96.0 has a hard-coded FTP username and password for backup operations, which allows remote attackers to read and modify arbitrary files via unspecified vectors related to “properties of the FTP server,” aka Bug ID CSCse93014.

Affected configurations

Nvd

Node

ciscowireless_control_systemMatch4.0

ciscowireless_control_systemMatch4.0.95

VendorProductVersionCPE
ciscowireless_control_system4.0cpe:2.3:h:cisco:wireless_control_system:4.0:*:*:*:*:*:*:*
ciscowireless_control_system4.0.95cpe:2.3:h:cisco:wireless_control_system:4.0.95:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	wireless_control_system	4.0	cpe:2.3:h:cisco:wireless_control_system:4.0:::::::*
cisco	wireless_control_system	4.0.95	cpe:2.3:h:cisco:wireless_control_system:4.0.95:::::::*

References

secunia.com/advisories/24865

securitytracker.com/id?1017907

www.cisco.com/warp/public/707/cisco-sa-20070412-wcs.shtml

www.osvdb.org/34132

www.securityfocus.com/bid/23460

www.vupen.com/english/advisories/2007/1367

exchange.xforce.ibmcloud.com/vulnerabilities/33614

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.9

Confidence

Low

EPSS

0.018

Percentile

88.3%

JSON

Related for NVD:CVE-2007-2032

cvelist1 cve1 prion1 securityvulns1