EMC ESRS Policy Manager prior to 6.8 contains an undocumented account (OpenDS admin) with a default password. A remote attacker with the knowledge of the default password may login to the system and gain administrator privileges to the local LDAP directory server.
CPE | Name | Operator | Version |
---|---|---|---|
esrs_policy_manager | le | 6.7 |