2 matches found
CVE-2010-2966
The INCLUDESECURITY functionality in Wind River VxWorks 6.x, 5.x, and earlier uses the LOGINUSERNAME and LOGINUSERPASSWORD aka LOGINPASSWORD parameters to create hardcoded credentials, which makes it easier for remote attackers to obtain access via a 1 telnet, 2 rlogin, or 3 FTP session...
CVE-2010-2966
The CVE-2010-2966 issue affects Wind River VxWorks 6.x, 5.x, and earlier where INCLUDE_SECURITY uses LOGIN_USER_NAME and LOGIN_USER_PASSWORD (LOGIN_PASSWORD) to create hardcoded credentials. This enables remote authentication for (1) telnet, (2) rlogin, or (3) FTP sessions. Root cause is hardcode...