4247 matches found
CVE-2004-1320
CVE-2004-1320 affects Asante FM2008 running firmware 1.06, where a default username and password can let remote attackers gain unauthorized access. The available documents confirm the affected product/firmware and the credential-based access issue, but do not provide a dedicated patch version or ...
CVE-2004-1532
AppServ 2.5.x and earlier installs a default username and password, which allows remote attackers to gain access...
CVE-2004-1791
The web management interface in Edimax AR-6004 ADSL Routers uses a default administrator name and password, which also appear as the default login text for the management interface, which allows remote attackers to gain access...
Novell NetMail default credentials
Default NMAP credentials are not changed after installation...
AppServ 2.5.x and Prior Exploit
what AppServ ========== AppServ is the Apache/PHP/MySQL open source software installer packages. Objective : - Easy to buid Webserver and Database Server - For those who just beginning client/server programming. - For web programmers/developers using PHP & MySQL. - For programming techniques that...
Nortel Multiple Default Accounts
It is possible to log into the remote host by using a default set of credentials. An attacker may use these to gain access to the remote host. These credentials are commonly found on Nortel Accelar routing switches. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...
Yak! FTP Server Default Credentials (deprecated)
Binary data 1091.prm...
Sybase ASE (Adaptive Server Enterprise) Database Server Default Credentials
Binary data 5157.prm...
Sybase SQL-Anywhere Database Server Default Credentials
Binary data 5150.prm...
Serv-U 3.x, 4.x, 5.x local privilege escalation
/ Hax0rcitos proudly presents Serv-u Local Exploit v3.x. tested also against last version 5.1.0.0 All Serv-u Versions have default Login/password for local Administration. This account is only available to connect in the loopback interface, so a local user will be able to connect to Serv-u with...
XMicro.backdoor.txt
Backdoor in the X-Micro WLAN 11b Broadband Router FCC ID: RAFXWL-11BRRG Firmware Version: 1.2.2, 1.2.2.3 probably others too Remote: yes, easily expoitable Type: administration password, which always works The following username and password works in every case, even if you set an other password ...
CVE-2002-1577
SAP R/3 2.0B to 4.6D installs several clients with default users and passwords, which allows remote attackers to gain privileges via the 1 SAP, 2 SAPCPIC, 3 DDIC, 4 EARLYWATCH, or 5 TMSADM accounts...
ImageFolio All Versions : admin.cgi Directory transversal and file delete exploit.
/---------------------------- Pimp industries. -----------------------------/ ImageFolio All Versions : admin.cgi Directory transversal and file delete exploit. Company: www.imagefolio.com Background ------------- ImageFolio is a multi-platform, server-based, software...
Default Password for FTP 'admin' Account
The account 'admin' on the remote FTP server has the password 'password'. An attacker may leverage this to gain access to the affected system and launch further attacks against it. If the remote host is an NB1300 router, this would allow an attacker to steal the WAN credentials of the user, or ev...
CVS pserver Brute Force Access
It was possible to find the public CVS repository of the remote host by searching a list of commonly used passwords and CVS repositories. A remote attacker could exploit this to access or modify sensitive information. C Tenable Network Security, Inc. include"compat.inc"; ifdescription...
External access to Netgear RP114 "firewall"
The NetGear Web Safe Router RP114 with current firmware 3.26 is vulnerable in its default configuration. The router acts as a DHCP server for LAN clients and as a DHCP client on the external side. The IP address 192.168.0.1 is meant for local access, as DHCP server, DNS proxy, default gateway and...
CVE-2002-0310
CVE-2002-0310 affects Netwin WebNews 1.1k CGI. The issue arises from default usernames and cleartext passwords that cannot be deleted by the administrator, enabling remote attackers to gain privileges using the listed credential pairs (testweb/newstest, alwn3845/imaptest, alwi3845/wtest3452, test...
CVE-2001-1213
The default configuration of DataWizard FtpXQ 2.0 and 2.1 includes a default username and password, which allows remote attackers to read and write arbitrary files in the root folder...
CVE-2001-1213
The CVE-2001-1213 entry applies to DataWizard FtpXQ 2.0 and 2.1, where a default configuration uses a default username and password, enabling remote attackers to read and write arbitrary files in the root folder. Root cause: default credentials in the product’s default setup. Impact per NVD: conf...
CVE-2001-1195
CVE-2001-1195 affects Novell GroupWise Servlet Manager (groupwise servlet server) with default credentials. Connected sources confirm that a default username/password (e.g., servlet/manager) enables remote attackers to access the servlet manager and potentially gain privileges. The OpenVAS entrie...