PT-2007-5898 · Cisco · Cisco Video Surveillance Sp/Isp Decoder+2

Published

2007-09-06

·

Updated

2017-07-29

·

CVE-2007-4746

CVSS v2.0

9.0

High

VectorAV:N/AC:L/Au:S/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions: Cisco Video Surveillance IP Gateway Encoder/Decoder (Standalone and Module) versions 1.8.1 and earlier Cisco Video Surveillance SP/ISP Decoder Software versions 1.11.0 and earlier Cisco Video Surveillance SP/ISP firmware versions 1.23.7 and earlier
Description: The issue allows remote attackers to perform administrative actions due to default passwords for the sypixx and root user accounts.
Recommendations: For Cisco Video Surveillance IP Gateway Encoder/Decoder (Standalone and Module) versions 1.8.1 and earlier, change the default passwords for the sypixx and root user accounts. For Cisco Video Surveillance SP/ISP Decoder Software versions 1.11.0 and earlier, change the default passwords for the sypixx and root user accounts. For Cisco Video Surveillance SP/ISP firmware versions 1.23.7 and earlier, change the default passwords for the sypixx and root user accounts.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

CVE-2007-4746

Affected Products

Cisco Video Surveillance Ip Gateway Encoder/Decoder
Cisco Video Surveillance Sp/Isp Decoder
Cisco Video Surveillance Sp/Isp Firmware