CVE-2009-0620

Published: Feb 26, 2009Modified: Apr 23, 2026

10.0

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 10.0 / Impact: 10.0

Source: NVD

Description

Cisco ACE Application Control Engine Module for Catalyst 6500 Switches and 7600 Routers before A2(1.1) uses default (1) usernames and (2) passwords for (a) the administrator and (b) web management, which makes it easier for remote attackers to perform configuration changes or obtain operating-system access.

Affected (1)

Products: Cisco: Application Control Engine Module

1 product

Application Control Engine Module

Configuration A

1 vulnerable · 2 platform

Vulnerable Software	Affected Versions
Cisco Application Control Engine Module	Up to 0

Running on/with	Platform Versions
Cisco Catalyst	Version 6500
Cisco Catalyst	Version 7600

Related CWEs

References (4)

http://www.cisco.com/en/US/products/products_security_advisory09186a0080a7bc82.shtml

Source: psirt@cisco.com

Vendor Advisory

http://www.securityfocus.com/bid/33900

Source: psirt@cisco.com

http://www.cisco.com/en/US/products/products_security_advisory09186a0080a7bc82.shtml

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.securityfocus.com/bid/33900

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.