Cisco Prime Network Control System Default Credentials (cisco-sa-20130410-ncs)
High Nessus Plugin ID 66861
SynopsisOne or more accounts on the remote host use a default password.
DescriptionAccording to its self-reported version, the remote host is running a
release of Cisco Prime Network Control System prior to 1.1.2. As
such, it reportedly has the following vulnerabilities :
- The 'oracle' user account is secured with an unspecified,
default password. (CSCtz30468)
- The 'wcsdba' Oracle database account is secured with a
default password of 'wcs123'. (CSCub54624)
A remote, unauthenticated attacker could exploit this to log into the
system and change its configuration or disrupt services.
SolutionUpgrade to Cisco Prime Network Control System version 1.1.2 or later.