Published: 22/11/2010 Updated: 10/12/2010

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

VMScore: 890

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Subscribe to Unified Videoconferencing System 5110 Firmware

Cisco Unified Videoconferencing (UVC) System 5110 and 5115, when the Linux operating system is used, has a default password for the (1) root, (2) cs, and (3) develop accounts, which makes it easier for remote malicious users to obtain access via the (a) FTP or (b) SSH daemon, aka Bug ID CSCti54008.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco unified_videoconferencing_system_5110_firmware 7.0.1.13.3
cisco unified_videoconferencing_system_5115_firmware 7.0.1.13.3
cisco unified_videoconferencing_system_5110
cisco unified_videoconferencing_system_5115

This is the Cisco Product Security Incident Response Team (PSIRT) security advisory related to a posting entitled "Cisco Unified Videoconferencing multiple vulnerabilities" by Florent Daigniere of Matta Consulting regarding vulnerabilities in the Cisco Unified Videoconferencing (Cisco UVC) 5100 series products Several of the vulnerabilitie ...

CWE-255 http://www.cisco.com/en/US/products/products_security_response09186a0080b56d0d.html http://www.trustmatta.com/advisories/MATTA-2010-001.txt http://seclists.org/fulldisclosure/2010/Nov/167 http://www.securitytracker.com/id?1024753 http://www.securityfocus.com/bid/44924 https://nvd.nist.gov http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20101206-cuvc

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2010-3038

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect