CVE-2016-1307 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2016-1307

CWE

https://cwe.mitre.org/data/definitions/255.html

The Openfire server in Cisco Finesse Desktop 10.5(1) and 11.0(1) and Unified Contact Center Express 10.6(1) has a hardcoded account, which makes it easier for remote attackers to obtain access via an XMPP session, aka Bug ID CSCuw79085.

Affected Software

Name	Vendor	Start Version	End Version
Gs1900-10hp_firmware	Zyxel	*	2.50(aazi.0)c0 (excluding)
Keymouse_firmware	Zzinc	3.08 (including)	3.08 (including)

References

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160202-fducce
http://www.securitytracker.com/id/1034920
http://www.securitytracker.com/id/1034921
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160202-fducce
http://www.securitytracker.com/id/1034920
http://www.securitytracker.com/id/1034921