CVE-2007-5382

The conversion utility for converting CiscoWorks Wireless LAN Solution Engine (WLSE) 4.1.91.0 and earlier to Cisco Wireless Control System (WCS) creates administrator accounts with default usernames and passwords, which allows remote attackers to gain privileges.

Published: Oct 12, 2007
Updated: Apr 13, 2023
CVE: CVE-2007-5382
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 10
AV:N/AC:L/Au:N/C:C/I:C/A:C

CWEs:

CWE-264

Affected Software
References

Software	From	Fixed in
cisco / wireless_lan_solution_engine	-	4.1.91.0.x
cisco / wireless_control_system	4.1.91.0	4.1.91.0.x

http://osvdb.org/37936
http://www.cisco.com/en/US/products/products_security_advisory09186a00808d72db.shtml
http://www.securityfocus.com/bid/26000
http://www.securitytracker.com/id?1018797
http://www.vupen.com/english/advisories/2007/3456
https://exchange.xforce.ibmcloud.com/vulnerabilities/37053

Vulnerability Database

289,697

CVE-2007-5382