SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Device (Embedded Server/Appliance)  >   Cisco Security Monitoring, Analysis and Response System Vendors:   Cisco
Cisco Security Monitoring, Analysis and Response System (CS-MARS) Undocumented Account With Default Password Lets Remote Authenticated Users Gain Administrative Access
SecurityTracker Alert ID:  1015471
SecurityTracker URL:  http://securitytracker.com/id/1015471
CVE Reference:   GENERIC-MAP-NOMATCH   (Links to External Site)
Date:  Jan 11 2006
Impact:   Root access via local system
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): 4.1.2 and prior versions
Description:   A vulnerability was reported in the Cisco Security Monitoring, Analysis and Response System (CS-MARS). A remote authenticated user can gain administrative access on the target device.

The CS-MARS appliance has an undocumented administrative root account with a common default password. A remote authenticated user can invoke the undocumented expert command with the default password to gain root access on the device.

The password cannot be changed.

Cisco has assigned Cisco Bug ID CSCsc83940 to this vulnerability.

Impact:   A remote authenticated user can gain full administrative privileges on the target device.
Solution:   The vendor has issued a fixed version (4.1.3).

The vendor's advisory is available at:

http://www.cisco.com/warp/public/707/cisco-sa-20060111-mars.shtml

Vendor URL:  www.cisco.com/warp/public/707/cisco-sa-20060111-mars.shtml (Links to External Site)
Cause:   Authentication error

Message History:   None.


 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2019, SecurityGlobal.net LLC