New Search

Cisco Multiple Router Products Web Setup Configuration Error Vulnerability

oval:org.mitre.oval:def:5826

The default configuration of IOS HTTP server in Cisco Router Web Setup (CRWS) before 3.3.0 build 31 does not require credentials which allows remote attackers to access the server with arbitrary privilege levels aka bug CSCsa78190.

Family:
ios
Status:
ACCEPTED
Platform(s):
  • Cisco IOS
Class:
vulnerability
Reference(s):
  • CVE-2006-3595
Product(s):