CVE-2012-4072 Information

Description

The KVM subsystem in Cisco Unified Computing System (UCS) relies on a hardcoded X.509 certificate which allows man-in-the-middle attackers to spoof SSL servers and read keyboard and mouse events by leveraging knowledge of this certificate’s private key aka Bug ID CSCte90327.

Reference

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2012-4072 http://www.securitytracker.com/id/1029067