CVE-2004-0391

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.1010%

EPSS Percentile17.60th

PublishedJun 1, 2004

Last ModifiedApr 16, 2026

Vulnerability Description

Cisco Wireless LAN Solution Engine (WLSE) 2.0 through 2.5 and Hosting Solution Engine (HSE) 1.7 through 1.7.3 have a hardcoded username and password, which allows remote attackers to add new users, modify existing users, and change configuration.

Affected Platforms (CPE)

📦

Cisco

Wireless Lan Solution Engine

= 2.0

📦

Cisco

Wireless Lan Solution Engine

= 2.1

📦

Cisco

Wireless Lan Solution Engine

= 2.2

📦

Cisco

Wireless Lan Solution Engine

= 2.3

📦

Cisco

Wireless Lan Solution Engine

= 2.4

📦

Cisco

Wireless Lan Solution Engine

= 2.5

🔌

Cisco

Hosting Solution Engine

= 1.7

🔌

Cisco

Hosting Solution Engine

= 1.7.0

🔌

Cisco

Hosting Solution Engine

= 1.7.1

🔌

Cisco

Hosting Solution Engine

= 1.7.2

🔌

Cisco

Hosting Solution Engine

= 1.7.3

References & Advisories

🔗 http://www.ciac.org/ciac/bulletins/o-111.shtml

🔗 http://www.cisco.com/warp/public/707/cisco-sa-20040407-username.shtml

🔗 http://www.kb.cert.org/vuls/id/659228

🔗 http://www.securityfocus.com/bid/10076

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/15773

🔗 http://www.ciac.org/ciac/bulletins/o-111.shtml

🔗 http://www.cisco.com/warp/public/707/cisco-sa-20040407-username.shtml

🔗 http://www.kb.cert.org/vuls/id/659228

Vulnerability Description

Affected Platforms (CPE)

Wireless Lan Solution Engine

Wireless Lan Solution Engine

Wireless Lan Solution Engine

Wireless Lan Solution Engine

Wireless Lan Solution Engine

Wireless Lan Solution Engine

Hosting Solution Engine

Hosting Solution Engine

Hosting Solution Engine

Hosting Solution Engine

Hosting Solution Engine

References & Advisories

Related Vulnerabilities