Lucene search
K

8093 matches found

CVE
CVE
added 2007/04/16 9:0 p.m.45 views

CVE-2007-2040

This CVE (CVE-2007-2040) affects Cisco Aironet 1000/1500 Lightweight Access Points, with hard-coded credentials allowing an attacker with physical access to perform arbitrary actions on the device. Affected firmware versions are before 3.2.185.0 for 1000/1500 lightweight APs and before 4.0.206.0 ...

6.2CVSS6.4AI score0.00363EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2007/03/07 8:19 p.m.16 views

CVE-2006-7142

The centralized management feature for Utimaco Safeguard stores hard-coded cryptographic keys in executable programs for encrypted configuration files, which allows attackers to recover the keys from the configuration files and decrypt the disk drive...

7.8CVSS7.6AI score0.00311EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2007/03/07 12:0 a.m.4 views

PT-2007-1420 · Utimaco · Utimaco Safeguard

Name of the Vulnerable Software and Affected Versions: Utimaco Safeguard affected versions not specified Description: The centralized management feature of Utimaco Safeguard stores hard-coded cryptographic keys in executable programs for encrypted configuration files. This allows attackers to...

7.8CVSS6.2AI score0.00311EPSS
Exploits0References6
Cvelist
Cvelist
added 2007/02/22 1:0 a.m.23 views

CVE-2007-1063

The SSH server in Cisco Unified IP Phone 7906G, 7911G, 7941G, 7961G, 7970G, and 7971G, with firmware 8.04SR1 and earlier, uses a hard-coded username and password, which allows remote attackers to access the device...

6.5AI score0.03331EPSS
Exploits0References8
CVE
CVE
added 2007/02/22 1:0 a.m.70 views

CVE-2007-1063

Cisco Unified IP Phone models 7906G/7911G/7941G/7961G/7970G/7971G running firmware 8.0(4)SR1 and earlier have a hard-coded SSH credential issue in the SSH server that lets remote attackers access the device. Connected sources (NVD, Tenable, PRION, CVE lists) confirm the root cause as embedded cre...

10CVSS6.5AI score0.03331EPSS
Exploits0References8Affected Software1
Exploit DB
Exploit DB
added 2006/11/15 12:0 a.m.34 views

WinZip 10.0.7245 - FileView ActiveX Remote Buffer Overflow

/ WinZip - prdelka / incl...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2006/11/03 12:0 a.m.179 views

Barracuda Networks垃圾邮件防火墙多个安全漏洞

Barracuda Spam Firewall是用于保护邮件服务器的集成硬件和软件垃圾邮件解决方案。 Barracuda垃圾邮件防火墙Login.pm脚本中的guest帐号有硬编码的口令bnadmin99。尽管guest帐号仅有有限的访问能力,但还是可以获取以下信息: 系统配置,包括IP地址、管理员IP ACL; 邮件消息日志(但没有消息的内容); 垃圾邮件/杀毒定义的版本信息和系统固件版本。...

7.1AI score
Exploits0
Cvelist
Cvelist
added 2006/09/27 11:0 p.m.18 views

CVE-2006-5038

The FiWin SS28S WiFi VoIP SIP/Skype Phone, firmware version 010207, has a hard-coded username and password, which allows remote attackers to gain administrative access via telnet...

7.1AI score0.0229EPSS
Exploits0References5
NVD
NVD
added 2006/08/05 1:4 a.m.17 views

CVE-2006-4001

Login.pm in Barracuda Spam Firewall BSF 3.3.01.001 through 3.3.03.053 contains a hard-coded password for the guest account, which allows remote attackers to read sensitive information such as e-mail logs, and possibly e-mail contents and the admin password...

7.5CVSS6.5AI score0.01822EPSS
Exploits1References6
Cvelist
Cvelist
added 2006/08/05 1:0 a.m.21 views

CVE-2006-4001

Login.pm in Barracuda Spam Firewall BSF 3.3.01.001 through 3.3.03.053 contains a hard-coded password for the guest account, which allows remote attackers to read sensitive information such as e-mail logs, and possibly e-mail contents and the admin password...

6.5AI score0.01822EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2006/08/02 12:0 a.m.41 views

Barracuda Spam Firewall Default Credentials

The firmware version of the Barracuda Spam Firewall detected on the remote device contains a hard-coded password for the 'guest' user account. Additionally, the device reportedly also contains a hard-coded password for the 'admin' account as well as the device fails to properly filter user-suppli...

7.5CVSS5.9AI score0.05725EPSS
Exploits2References5
NVD
NVD
added 2006/06/28 11:5 p.m.16 views

CVE-2006-3286

The internal database in Cisco Wireless Control System WCS for Linux and Windows before 3.263 stores a hard-coded username and password in plaintext within unspecified files, which allows remote authenticated users to access the database aka bug CSCsd15951...

7.5CVSS6.5AI score0.02632EPSS
Exploits0References7
Cvelist
Cvelist
added 2006/06/28 11:0 p.m.19 views

CVE-2006-3286

The internal database in Cisco Wireless Control System WCS for Linux and Windows before 3.263 stores a hard-coded username and password in plaintext within unspecified files, which allows remote authenticated users to access the database aka bug CSCsd15951...

6.5AI score0.02632EPSS
Exploits0References7
CVE
CVE
added 2006/06/28 11:0 p.m.40 views

CVE-2006-3286

The CVE-2006-3286 entry concerns Cisco Wireless Control System (WCS) for Linux and Windows prior to 3.2(63). The vulnerability arises from a hard-coded username and password stored in plaintext in unspecified files within the WCS database, enabling remote authenticated users to access the databas...

7.5CVSS6.8AI score0.02632EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2006/06/28 10:0 p.m.25 views

CVE-2006-3285

The internal database in Cisco Wireless Control System WCS for Linux and Windows before 3.251 uses an undocumented, hard-coded username and password, which allows remote authenticated users to read, and possibly modify, sensitive configuration data aka bugs CSCsd15955...

6.4AI score0.02632EPSS
Exploits0References7
Cvelist
Cvelist
added 2006/05/31 10:0 p.m.18 views

CVE-2006-2716

Secure Elements Class 5 AVR server aka C5 EVM before 2.8.1 uses a hard-coded user ID and password, which allows remote attackers to gain access to the server...

6.8AI score0.02151EPSS
Exploits0References6
CERT
CERT
added 2006/05/30 12:0 a.m.19 views

Secure Elements Class 5 AVR server contains hard-coded user ID and password

Overview The Secure Elements Class 5 AVR server contains a hard-coded user ID and password. This may allow a remote unauthenticated attacker to gain access to the server. Description Class 5 AVR Secure Elements Class 5 AVR Automated Vulnerability Remediation is a security product that monitors an...

7.6AI score
Exploits0References1
Cvelist
Cvelist
added 2005/11/24 11:0 a.m.24 views

CVE-2005-3803

Cisco IP Phone VoIP 7920 1.08 contains certain hard-coded "fixed" public and private SNMP community strings that cannot be changed, which allows remote attackers to obtain sensitive information...

7.5AI score0.02146EPSS
Exploits0References6
CVE
CVE
added 2005/11/24 11:0 a.m.55 views

CVE-2005-3803

Cisco IP Phone 7920 (VoIP) 1.0(8) is affected by hard-coded public and private SNMP community strings that cannot be changed, enabling potential remote information disclosure. The issue is documented across NVD/Nessus and Cisco advisories, with a vendor alert suggesting that fixed SNMP communitie...

7.5CVSS7.5AI score0.02146EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2005/11/21 11:3 a.m.15 views

CVE-2005-3716

The SNMP daemon in UTStarcom F1000 VOIP WIFI Phone s2.0 running VxWorks 5.5.1 with kernel WIND 2.6 has hard-coded public credentials that cannot be changed, which allows attackers to obtain sensitive information...

7.5CVSS7.3AI score0.01579EPSS
Exploits0References4
Rows per page
Query Builder