漏洞类别:General remote services
漏洞等级: 
漏洞信息
Cisco Prime Collaboration is a video and voice service assurance and management system with a set of monitoring, troubleshooting, and reporting capabilities that help ensure end users receive consistent video and voice collaboration experience.
The vulnerability exists as the Cisco Prime Collaboration Assurance device is protected by default credentials, that is created during installation. An unauthenticated, remote attacker could exploit this vulnerability to log in to the system shell with the default 'cmuser' user account
Affected Versions:
Cisco Prime Collaboration Assurance Software releases prior to 11.0
漏洞危害
Successful exploitation could allow an unauthenticated, remote attacker to login to the targeted system and run arbitrary commands.
解决方案
Customers are advised to refer to cisco-sa-20151209-pca for information pertaining to remediate this vulnerability.
Patch:
Following are links for downloading patches to fix the vulnerabilities:
0day
文章评论