Cisco recently warned of a vulnerability, which is said to be having affect on several versions of its Cisco Network Services NetFlow monitoring tool (NetFlow versions prior to 6.0.) Cisco said that on being deployed the tool; default users credentials are generated on the machine, which is likely to enable a remote hacker who has knowledge of these hard-coded credentials, to obtain access to a pretentious machine. Cisco advises users to enhance to Version 6.0. It’s not a free upgrade. The NetFlow Collection Engine is a monitoring tool, which is said to grant access to network management infrastructure metering for technologies as routers and switches. The gathered data can be utilized to make available a network baseline that supports IT managers to find out network indiscretions such as denial-of-service attacks, malware, and other nasty behavior. Cisco was reported to have said that NetFlow is operated on a Unix platform, which on being deployed generate a default Web-enabled user account, nfcuser, looked-for dong app maintenance, configuration, and troubleshooting with a password of nfcuser. In prior to 6.0 versions, the installer will also generate a local user, which is also known as nfcuser, on the operating system with a default password also a double of the username. If the user before now exists, the installer will create change in the password to be the similar like the username. The company recommends in its advisory that users are allowed to manually modify the password on the host operating system.