Default credentials

2011-04-1002:55:00

PRIOn knowledge base

www.prio-n.com

6.7 Medium

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

76.9%

JSON

The Dell KACE K2000 Systems Deployment Appliance 3.3.36822 and earlier contains a peinst CIFS share, which allows remote attackers to obtain sensitive information by reading the (1) unattend.xml or (2) sysprep.inf file, as demonstrated by reading a password.

CPENameOperatorVersion
kace_k2000_systems_deployment_appliancele3.3.36822

CPE	Name	Operator	Version
	kace_k2000_systems_deployment_appliance	le	3.3.36822

References

www.kace.com/support/kb/index.php?action=artikel&cat=1&id=1104

www.kb.cert.org/vuls/id/598700

www.securityfocus.com/bid/47172

www.vupen.com/english/advisories/2011/0883

exchange.xforce.ibmcloud.com/vulnerabilities/66630