CVE-2007-2040 - OpenCVE

Cisco Aironet 1000 Series and 1500 Series Lightweight Access Points before 3.2.185.0, and 4.0.x before 4.0.206.0, have a hard-coded password, which allows attackers with physical access to perform arbitrary actions on the device, aka Bug ID CSCsg15192.

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity High

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:L/AC:H/Au:N/C:C/I:C/A:C

Vendors & Products
CPE Configurations

Vendors	Products
Cisco	Aironet 1500-series Aironet 1000-series Wireless Lan Controller Software

Configuration 1 [-]

AND

OR	cpe:2.3:o:cisco:wireless_lan_controller_software::::::::
	cpe:2.3:o:cisco:wireless_lan_controller_software::::::::

OR	cpe:2.3:h:cisco:aironet_1000-series:-:::::::*
	cpe:2.3:h:cisco:aironet_1500-series:-:::::::*

References

Link	Resource
http://securitytracker.com/id?1017908	Third Party Advisory VDB Entry
http://www.cisco.com/warp/public/707/cisco-sa-20070412-wlc.shtml	Patch Vendor Advisory
http://www.osvdb.org/34133	Broken Link
http://www.securityfocus.com/bid/23461	Third Party Advisory VDB Entry
http://www.vupen.com/english/advisories/2007/1368	Permissions Required
https://exchange.xforce.ibmcloud.com/vulnerabilities/33610	Third Party Advisory VDB Entry

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2007-04-16T21:00:00

Updated: 2017-07-28T12:57:01

Reserved: 2007-04-16T00:00:00

Link: CVE-2007-2040

JSON object: View

NVD Information

Status : Analyzed

Published: 2007-04-16T21:19:00.000

Modified: 2019-08-14T11:28:41.370

Link: CVE-2007-2040

JSON object: View

Redhat Information

No data.

CWE

NVD-CWE-Other

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2007-04-12T00:00:00", "descriptions": [{"lang": "en", "value": "Cisco Aironet 1000 Series and 1500 Series Lightweight Access Points before 3.2.185.0, and 4.0.x before 4.0.206.0, have a hard-coded password, which allows attackers with physical access to perform arbitrary actions on the device, aka Bug ID CSCsg15192."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-07-28T12:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "cisco-aironet-default-password(33610)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33610"}, {"name": "ADV-2007-1368", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2007/1368"}, {"name": "34133", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/34133"}, {"name": "20070412 Multiple Vulnerabilities in the Cisco Wireless LAN Controller and Cisco Lightweight Access Points", "tags": ["vendor-advisory", "x_refsource_CISCO"], "url": "http://www.cisco.com/warp/public/707/cisco-sa-20070412-wlc.shtml"}, {"name": "1017908", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1017908"}, {"name": "23461", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/23461"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2007-2040", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Cisco Aironet 1000 Series and 1500 Series Lightweight Access Points before 3.2.185.0, and 4.0.x before 4.0.206.0, have a hard-coded password, which allows attackers with physical access to perform arbitrary actions on the device, aka Bug ID CSCsg15192."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "cisco-aironet-default-password(33610)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33610"}, {"name": "ADV-2007-1368", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2007/1368"}, {"name": "34133", "refsource": "OSVDB", "url": "http://www.osvdb.org/34133"}, {"name": "20070412 Multiple Vulnerabilities in the Cisco Wireless LAN Controller and Cisco Lightweight Access Points", "refsource": "CISCO", "url": "http://www.cisco.com/warp/public/707/cisco-sa-20070412-wlc.shtml"}, {"name": "1017908", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1017908"}, {"name": "23461", "refsource": "BID", "url": "http://www.securityfocus.com/bid/23461"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2007-2040", "datePublished": "2007-04-16T21:00:00", "dateReserved": "2007-04-16T00:00:00", "dateUpdated": "2017-07-28T12:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:cisco:wireless_lan_controller_software:*:*:*:*:*:*:*:*", "matchCriteriaId": "492E5E7D-A274-4B4D-B0E1-8A0FA4F209D1", "versionEndExcluding": "3.2.185.0", "versionStartIncluding": "3.2", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:wireless_lan_controller_software:*:*:*:*:*:*:*:*", "matchCriteriaId": "4FE93BEF-E6EC-45B4-8975-6C0C47964602", "versionEndExcluding": "4.0.206.0", "versionStartIncluding": "4.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:cisco:aironet_1000-series:-:*:*:*:*:*:*:*", "matchCriteriaId": "8191FD0B-F005-47D6-9386-7B1DACE3C037", "vulnerable": false}, {"criteria": "cpe:2.3:h:cisco:aironet_1500-series:-:*:*:*:*:*:*:*", "matchCriteriaId": "D181210B-757B-41DB-AC1B-EE01CFF447F2", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "Cisco Aironet 1000 Series and 1500 Series Lightweight Access Points before 3.2.185.0, and 4.0.x before 4.0.206.0, have a hard-coded password, which allows attackers with physical access to perform arbitrary actions on the device, aka Bug ID CSCsg15192."}, {"lang": "es", "value": "Cisco Aironet 1000 Series y 1500 Series Lightweight Access Points anteriores a 3.2.185.0, y 4.0.x anteriores a 4.0.206.0, tienen una contrase\u00f1a fija en el c\u00f3digo, lo cual permite a atacantes con acceso f\u00edsico realizar acciones de su elecci\u00f3n en el dispositivo, tambi\u00e9n conocido como Bug ID CSCsg15192."}], "id": "CVE-2007-2040", "lastModified": "2019-08-14T11:28:41.370", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "HIGH", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 6.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:H/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 1.9, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2007-04-16T21:19:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://securitytracker.com/id?1017908"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.cisco.com/warp/public/707/cisco-sa-20070412-wlc.shtml"}, {"source": "cve@mitre.org", "tags": ["Broken Link"], "url": "http://www.osvdb.org/34133"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/23461"}, {"source": "cve@mitre.org", "tags": ["Permissions Required"], "url": "http://www.vupen.com/english/advisories/2007/1368"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "VDB Entry"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33610"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}