CVE-2004-0391

Published Jun 1, 2004

Last updated 7 years ago

CVSS info 10.0

Overview

Description: Cisco Wireless LAN Solution Engine (WLSE) 2.0 through 2.5 and Hosting Solution Engine (HSE) 1.7 through 1.7.3 have a hardcoded username and password, which allows remote attackers to add new users, modify existing users, and change configuration.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 10
Impact score: 10
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:cisco:wireless_lan_solution_engine:2.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5E89560E-5A06-44F5-82AB-AEB9AD7B97DD"
          },
          {
            "criteria": "cpe:2.3:a:cisco:wireless_lan_solution_engine:2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D54C89F2-D5F5-412D-85C6-1CD76E03BE26"
          },
          {
            "criteria": "cpe:2.3:a:cisco:wireless_lan_solution_engine:2.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E013901C-1B1E-4839-867B-D647A996BF60"
          },
          {
            "criteria": "cpe:2.3:a:cisco:wireless_lan_solution_engine:2.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B228B395-6964-449D-9B09-D7BFE31E9851"
          },
          {
            "criteria": "cpe:2.3:a:cisco:wireless_lan_solution_engine:2.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "25B36A82-33BE-4BA4-9B4A-36D685607A4C"
          },
          {
            "criteria": "cpe:2.3:a:cisco:wireless_lan_solution_engine:2.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C3D72DCA-130D-4507-BDAC-A6183D08BC2E"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:cisco:hosting_solution_engine:1.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9405E712-6682-4DCE-AA18-311A2D6AA958"
          },
          {
            "criteria": "cpe:2.3:h:cisco:hosting_solution_engine:1.7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EDA1DA2E-FD49-46B1-96E0-1129B16A8DD6"
          },
          {
            "criteria": "cpe:2.3:h:cisco:hosting_solution_engine:1.7.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D44C3E02-A17C-48A2-8173-358570C2ACAB"
          },
          {
            "criteria": "cpe:2.3:h:cisco:hosting_solution_engine:1.7.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8DA04953-EBE5-482D-83F9-30F10F739C31"
          },
          {
            "criteria": "cpe:2.3:h:cisco:hosting_solution_engine:1.7.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ADE85A5A-2CF3-49FB-A15C-49EA56338FBB"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References