{"vuid":"VU#127545","idnumber":"127545","name":"Cisco NetFlow Collection Engine contains known default passwords","keywords":["Cisco","NetFlow Collection Engine","authentication bypass","information disclosure","known default passwords","show-tech"],"overview":"A vulnerability in the Cisco NetFlow Collection Engine could allow a remote attacker to gain access to a vulnerable system.","clean_desc":"The Cisco Network Services (CNS) NetFlow Collection Engine (NFC) is a software package for supported UNIX platforms and is used to collect and monitor NetFlow accounting data for network devices such as routers and switches. It includes a web-based interface to perform application maintenance, configuration, and troubleshooting. Versions of NFC prior to 6.0 create and use default accounts with an identical username and password of \"nfcuser\".","impact":"A remote attacker with knowledge of the default account information can gain administrative control of the NFC application configuration through the web-based interface. For some configurations, the attacker may also be able to gain user access to the host operating system with the privileges of nfcuser. This access may allow for additional privilege escalation attacks on an affected system.","resolution":"Change passwords for the affected account\nCisco has published instructions for changing the passwords on the nfcuser account in Cisco Security Advisory cisco-sa-20070425-nfc. This advisory contains additional information about how the issue has been addressed in newer versions of the affected software. Note that both the web-based and UNIX user account passwords must be changed on some platforms.","workarounds":"","sysaffected":"","thanks":"Thanks to Cisco Systems Product Security Incident Response Team for reporting this vulnerability.","author":"This document was written by Chad R Dougherty.","public":["h","t","t","p",":","/","/","w","w","w",".","c","i","s","c","o",".","c","o","m","/","w","a","r","p","/","p","u","b","l","i","c","/","7","0","7","/","c","i","s","c","o","-","s","a","-","2","0","0","7","0","4","2","5","-","n","f","c",".","s","h","t","m","l"],"cveids":["CVE-2007-2282"],"certadvisory":"","uscerttechnicalalert":null,"datecreated":"2007-04-25T17:01:38Z","publicdate":"2007-04-25T00:00:00Z","datefirstpublished":"2007-04-26T13:41:16Z","dateupdated":"2007-06-14T17:01:52Z","revision":7,"vrda_d1_directreport":"0","vrda_d1_population":"2","vrda_d1_impact":"3","cam_widelyknown":"15","cam_exploitation":"0","cam_internetinfrastructure":"5","cam_population":"5","cam_impact":"10","cam_easeofexploitation":"20","cam_attackeraccessrequired":"20","cam_scorecurrent":"7.5","cam_scorecurrentwidelyknown":"9.375","cam_scorecurrentwidelyknownexploited":"16.875","ipprotocol":"tcp\n23/tcp\n22/tcp","cvss_accessvector":"","cvss_accesscomplexity":"","cvss_authentication":null,"cvss_confidentialityimpact":"","cvss_integrityimpact":"","cvss_availabilityimpact":"","cvss_exploitablity":null,"cvss_remediationlevel":"","cvss_reportconfidence":"","cvss_collateraldamagepotential":"","cvss_targetdistribution":"","cvss_securityrequirementscr":"","cvss_securityrequirementsir":"","cvss_securityrequirementsar":"","cvss_basescore":"","cvss_basevector":"","cvss_temporalscore":"","cvss_environmentalscore":"","cvss_environmentalvector":"","metric":7.5,"vulnote":null}