CVE-2010-3038

EUVD-2010-3040
Cisco Unified Videoconferencing (UVC) System 5110 and 5115, when the Linux operating system is used, has a default password for the (1) root, (2) cs, and (3) develop accounts, which makes it easier for remote attackers to obtain access via the (a) FTP or (b) SSH daemon, aka Bug ID CSCti54008.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
10 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 79%
Affected Products (NVD)
VendorProductVersion
ciscounified_videoconferencing_system_5110_firmware
7.0.1.13.3
ciscounified_videoconferencing_system_5115_firmware
7.0.1.13.3
ciscounified_videoconferencing_system_5110
*
ciscounified_videoconferencing_system_5115
*
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://seclists.org/fulldisclosure/2010/Nov/167
http://www.cisco.com/en/US/products/products_security_response09186a0080b56d0d.html
http://www.securityfocus.com/bid/44924
http://www.securitytracker.com/id?1024753
http://www.trustmatta.com/advisories/MATTA-2010-001.txt
http://seclists.org/fulldisclosure/2010/Nov/167
http://www.cisco.com/en/US/products/products_security_response09186a0080b56d0d.html
http://www.securityfocus.com/bid/44924
http://www.securitytracker.com/id?1024753
http://www.trustmatta.com/advisories/MATTA-2010-001.txt