Technical Description

Two vulnerabilities have been identified in Cisco Video Surveillance IP Gateway, which could be exploited by remote attackers to bypass security restrictions and gain unauthorized access to an affected device.

The first issue is caused by a design error in the Telnet server that does not prompt for authentication, which could be exploited by remote attackers to gain interactive shell access with administrative privileges on a vulnerable device.

The second vulnerability is caused by the existence of default passwords for the "sypixx" and "root" user accounts, which could be exploited by an attacker with knowledge of the default passwords to gain interactive shell access with administrative privileges to a vulnerable device.

Affected Products

Cisco Video Surveillance IP Gateway Encoder/Decoder (Standalone and Module) firmware version 1.8.1 and prior
Cisco Video Surveillance SP/ISP Decoder Software firmware version 1.11.0 and prior
Cisco Video Surveillance SP/ISP firmware version 1.23.7 and prior

Solution

Upgrade to Cisco Video Surveillance IP Gateway Encoder/Decoder (Standalone and Module) firmware version 1.9.4 :
http://www.cisco.com/public/sw-center/sw-usingswc.shtml

Upgrade to Cisco Video Surveillance SP/ISP Decoder Software firmware version 1.16.0 :
http://www.cisco.com/public/sw-center/sw-usingswc.shtml

Upgrade to Cisco Video Surveillance SP/ISP firmware version 1.26.0 :
http://www.cisco.com/public/sw-center/sw-usingswc.shtml

References

http://www.vupen.com/english/advisories/2007/3061
http://www.cisco.com/warp/public/707/cisco-sa-20070905-video.shtml

Credits

Vulnerabilities reported by the vendor.

ChangeLog

2007-09-06 : Initial release

Vulnerability Management

Subscribe to VUPEN VNS and receive real-time e-mail and SMS alerts when new advisories or patches relevant to your systems and network configurations are available.

Feedback

If you have additional information or corrections for this security advisory please submit them via our contact form.