CVE-2011-3290

Sažetak

Cisco Identity Services Engine (ISE) before 1.0.4.MR2 has default Oracle database credentials, which allows remote attackers to modify settings or perform unspecified other administrative actions via unknown vectors, aka Bug ID CSCts59135.

Reference

http://secunia.com/advisories/46061
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b95105.shtml
http://www.securityfocus.com/bid/49703
http://www.securitytracker.com/id?1026075
https://exchange.xforce.ibmcloud.com/vulnerabilities/69945

CVSS

Base:	10.0
Impact:	10.0
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

29-08-2017 - 01:30

Objavljeno

21-09-2011 - 16:55