PT-2004-1541 · Cisco · Cisco Wireless Lan Solution Engine+1

Published

2004-04-16

Updated

2017-07-11

CVE-2004-0391

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Cisco Wireless LAN Solution Engine (WLSE) versions 2.0 through 2.5 Cisco Hosting Solution Engine (HSE) versions 1.7 through 1.7.3

Description The issue allows remote attackers to add new users, modify existing users, and change configuration due to a hardcoded username and password.

Recommendations For Cisco Wireless LAN Solution Engine (WLSE) versions 2.0 through 2.5, consider changing the hardcoded username and password to unique and secure credentials. For Cisco Hosting Solution Engine (HSE) versions 1.7 through 1.7.3, consider changing the hardcoded username and password to unique and secure credentials.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2004-0391

Affected Products

Cisco Hosting Solution Engine

Cisco Wireless Lan Solution Engine

PT-2004-1541 · Cisco · Cisco Wireless Lan Solution Engine+1

CVE-2004-0391

Related Identifiers

Affected Products

References · 6