Cisco Hard-codes Insecurity
No one said it was easy to develop enterprise-class software. Surely while testing something as complex as a centralized wireless management infrastructure, you've got to make some shortcuts for testing purposes. But to then leave those intact in the shipping...
April 9, 2004
![Network Computing logo Network Computing logo](https://eu-images.contentstack.com/v3/assets/bltde8121fc52c5c8f3/blt3f3d0318f746b1c2/65a530e4187606040a1d8b8c/placeholder.png?width=1280&auto=webp&quality=95&format=jpg&disable=upscale)
No one said it was easy to develop enterprise-class software. Surely while testing something as complex as a centralized wireless management infrastructure, you've got to make some shortcuts for testing purposes. But to then leave those intact in the shipping product? Oh boy.
A default username/password pair is present in all releases of the Wireless LAN Solution Engine (WLSE) and Hosting Solution Engine (HSE) software. A user who logs in using this username has complete control of the device. This username cannot be disabled. There is no workaround.
You May Also Like