The Latest in IT Security

Cisco finds, removes more default SSH keys on its software

26
Jun
2015
Cisco finds, removes more default SSH keys on its software

keys-680x400

Cisco has pushed out security updates to address two vulnerabilities in its Web Security Virtual Appliance (WSAv), Email Security Virtual Appliance (ESAv), and Content Security Management Virtual Appliance (SMAv) software.

The first one exists because a default authorized SSH key is shared across all the installations of those three appliances, and can be exploited by unauthenticated, remote attackers to connect to those appliances and gain root access, i.e. complete control of them.

Read More

Leave a reply


Categories

SATURDAY, OCTOBER 21, 2017

Featured

Archives

Latest Comments

Social Networks