Executive Summary
| Informations | |||
|---|---|---|---|
| Name | CVE-2006-3285 | First vendor Publication | 2006-06-28 |
| Vendor | Cve | Last vendor Modification | 2017-07-20 |
Security-Database Scoring CVSS v3
| Cvss vector : N/A | |||
|---|---|---|---|
| Overall CVSS Score | NA | ||
| Base Score | NA | Environmental Score | NA |
| impact SubScore | NA | Temporal Score | NA |
| Exploitabality Sub Score | NA | ||
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:N/AC:L/Au:N/C:P/I:P/A:P) | |||
|---|---|---|---|
| Cvss Base Score | 7.5 | Attack Range | Network |
| Cvss Impact Score | 6.4 | Attack Complexity | Low |
| Cvss Expoit Score | 10 | Authentication | None Required |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| The internal database in Cisco Wireless Control System (WCS) for Linux and Windows before 3.2(51) uses an undocumented, hard-coded username and password, which allows remote authenticated users to read, and possibly modify, sensitive configuration data (aka bugs CSCsd15955). |
Original Source
| Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3285 |
CPE : Common Platform Enumeration
| Type | Description | Count |
|---|---|---|
| Hardware | 1 |
Open Source Vulnerability Database (OSVDB)
| Id | Description |
|---|---|
| 26884 | Cisco Wireless Control System (WCS) Internal Database Persistent Account Remo... By default, Wireless Control System installs with an unspecified hidden backdoor password. This allows attackers to trivially access the program or system. |
Sources (Detail)
Alert History
| Date | Informations |
|---|---|
| 2021-05-05 01:02:34 |
|
| 2021-04-22 01:04:52 |
|
| 2020-05-23 00:18:00 |
|
| 2017-07-20 09:23:42 |
|
| 2016-06-28 15:51:13 |
|
| 2016-04-26 14:48:06 |
|
| 2013-05-11 11:01:37 |
|
