Cisco Prime Network Control System Default Credentials (cisco-sa-20130410-ncs)
High Nessus Plugin ID 66861
SynopsisOne or more accounts on the remote host use a default password.
DescriptionAccording to its self-reported version, the remote host is running a release of Cisco Prime Network Control System prior to 1.1.2. As such, it reportedly has the following vulnerabilities :
- The 'oracle' user account is secured with an unspecified, default password. (CSCtz30468)
- The 'wcsdba' Oracle database account is secured with a default password of 'wcs123'. (CSCub54624)
A remote, unauthenticated attacker could exploit this to log into the system and change its configuration or disrupt services.
SolutionUpgrade to Cisco Prime Network Control System version 1.1.2 or later.