Cisco Application Velocity System (AVS) before 5.1.0 is installed with default passwords for some system accounts, which allows remote attackers to gain privileges.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Application_velocity_system_3110 | Cisco | * | * |
| Application_velocity_system_3120 | Cisco | * | * |
| Application_velocity_system_3180 | Cisco | * | * |
| Application_velocity_system_3180a | Cisco | * | * |
References
- http://www.cisco.com/warp/public/707/cisco-sa-20080123-avs.shtml
- http://www.securityfocus.com/bid/27421
- http://www.securitytracker.com/id?1019259
- http://www.vupen.com/english/advisories/2008/0260
- https://exchange.xforce.ibmcloud.com/vulnerabilities/39860
- http://www.cisco.com/warp/public/707/cisco-sa-20080123-avs.shtml
- http://www.securityfocus.com/bid/27421
- http://www.securitytracker.com/id?1019259
- http://www.vupen.com/english/advisories/2008/0260
- https://exchange.xforce.ibmcloud.com/vulnerabilities/39860