Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Community Member

Callmanager Vunrebilities IUSR_GUEST TsInternetUser IWAM_GUEST

Our security team has advised us that the CM server has some high risks associated with these accounts ---> IUSR_GUEST TsInternetUser & IWAM_GUEST

A Guest account with no password required has been detected. An attacker could use this account to gain access to sensitive information.

plus medium level security breach below

HTTP TRACE support is enabled on the Web server. The HTTP TRACE method as described in RFC 2516 of the HTTP 1.1 standard is typically used for debugging and network analysis purposes to request the contents of HTTP request messages received by the Web server. On Web servers with HTTP TRACE support enabled, a remote attacker could leverage this functionality with known cross-site scripting and other Web browser vulnerabilities to obtain sensitive information about the Web server, including server cookies and authentication information. This information could then be used by the attacker to launch further attacks against the affected Web server.

1 REPLY
Bronze

Re: Callmanager Vunrebilities IUSR_GUEST TsInternetUser IWAM_GUE

You may want to report this to Cisco following this procedure.

http://www.cisco.com/warp/public/707/sec_incident_response.shtml#Problems

You can take a look at the currently reported Vulnerabilities at

http://www.cisco.com/en/US/products/sw/voicesw/ps556/prod_security_advisories_list.html

before reporting this.

269
Views
0
Helpful
1
Replies
CreatePlease to create content