1. CVE-Search
  2. CVE-2007-2282
ID CVE-2007-2282
Summary Cisco Network Services (CNS) NetFlow Collection Engine (NFC) before 6.0 has an nfcuser account with the default password nfcuser, which allows remote attackers to modify the product configuration and, when installed on Linux, obtain login access to the host operating system. The vendor has addressed this issue through the update 6.0.0 of the NetFlow Collection Engine.
References
Vulnerable Configurations
  • cpe:2.3:a:cisco:netflow_collection_engine:1.0:*:*:*:*:*:*:*
    cpe:2.3:a:cisco:netflow_collection_engine:1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:cisco:netflow_collection_engine:2.0:*:*:*:*:*:*:*
    cpe:2.3:a:cisco:netflow_collection_engine:2.0:*:*:*:*:*:*:*
  • cpe:2.3:a:cisco:netflow_collection_engine:3.0:*:*:*:*:*:*:*
    cpe:2.3:a:cisco:netflow_collection_engine:3.0:*:*:*:*:*:*:*
  • cpe:2.3:a:cisco:netflow_collection_engine:3.5:*:*:*:*:*:*:*
    cpe:2.3:a:cisco:netflow_collection_engine:3.5:*:*:*:*:*:*:*
  • cpe:2.3:a:cisco:netflow_collection_engine:3.6:*:*:*:*:*:*:*
    cpe:2.3:a:cisco:netflow_collection_engine:3.6:*:*:*:*:*:*:*
  • cpe:2.3:a:cisco:netflow_collection_engine:4.0:*:*:*:*:*:*:*
    cpe:2.3:a:cisco:netflow_collection_engine:4.0:*:*:*:*:*:*:*
  • cpe:2.3:a:cisco:netflow_collection_engine:5.0:*:*:*:*:*:*:*
    cpe:2.3:a:cisco:netflow_collection_engine:5.0:*:*:*:*:*:*:*
  • cpe:2.3:a:cisco:netflow_collection_engine:5.0.3:*:*:*:*:*:*:*
    cpe:2.3:a:cisco:netflow_collection_engine:5.0.3:*:*:*:*:*:*:*
CVSS
Base: 10.0 (as of 29-07-2017 - 01:31)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:N/AC:L/Au:N/C:C/I:C/A:C
refmap via4
bid 23647
cert-vn VU#127545
cisco 20070425 Default Passwords in NetFlow Collection Engine
osvdb 35524
sectrack 1017960
vupen ADV-2007-1545
xf cisco-nfc-default-password(33861)
Last major update 29-07-2017 - 01:31
Published 26-04-2007 - 19:19
Last modified 29-07-2017 - 01:31
Back to Top