VULHUB ™

It is reported that Cisco Guard and Anomaly Detector appliances contain a default backdoor account vulnerability. These appliances contain an undocumented user with a username of 'root', and an unspecified default password. This is an administrative account, with privileges similar to the Unix superuser. By exploiting this vulnerability, attackers with SSH or HTTPS access to affected devices may gain administrative access. Versions of Cisco Guard prior to 3.1, and versions of Cisco Anomaly Detector prior to 3.1 are reportedly affected by this vulnerability.

It is reported that Cisco Guard and Anomaly Detector appliances contain a default backdoor account vulnerability. These appliances contain an undocumented user with a username of 'root', and an unspecified default password. This is an administrative account, with privileges similar to the Unix superuser. By exploiting this vulnerability, attackers with SSH or HTTPS access to affected devices may gain administrative access. Versions of Cisco Guard prior to 3.1, and versions of Cisco Anomaly Detector prior to 3.1 are reportedly affected by this vulnerability.