ID de Prueba:	1.3.6.1.4.1.25623.1.0.106487
Categoría:	CISCO
Título:	Cisco Intercloud Fabric Database Static Credentials Vulnerability (cisco-sa-20161221-icf)
Resumen:	A vulnerability in Cisco Intercloud Fabric for Business and; Cisco Intercloud Fabric for Providers could allow an unauthenticated, remote attacker to connect; to the database used by these products.
Descripción:	Summary: A vulnerability in Cisco Intercloud Fabric for Business and Cisco Intercloud Fabric for Providers could allow an unauthenticated, remote attacker to connect to the database used by these products. Vulnerability Insight: The vulnerability occurs because the database account uses static credentials. Note that this database contains only internal objects used by the application. The database does not contain other credentials. Please note that this product has entered the end-of-sale and end-of-life process. Vulnerability Impact: An attacker could exploit this vulnerability by using these credentials to connect to the database. The contents of the database can then be examined or modified. Affected Software/OS: Cisco Intercloud Fabric versions 2.2.1, 2.3.1 and 3.1.1. Solution: See the referenced vendor advisory for a solution. CVSS Score: 6.5 CVSS Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2016-9217 BugTraq ID: 95023 http://www.securityfocus.com/bid/95023
Copyright	Copyright (C) 2016 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.