CVE-2005-2026

Enterasys Vertical Horizon VH-2402S before firmware 2.05.05.09 has a hard-coded account and password for debugging, which allows remote attackers to gain privileges...

CVE-2005-1867

Symantec Brightmail AntiSpam before 6.0.2 has a hard-coded database administrator password, which allows remote attackers to gain privileges...

CVE-2005-1867

Symantec Brightmail AntiSpam before 6.0.2 has a hard-coded database administrator password, which allows remote attackers to gain privileges...

CVE-2005-0349

The production release of the UniversalAgent for UNIX in BrightStor ARCserve Backup 11.1 contains hard-coded credentials, which allows remote attackers to access the file system and possibly execute arbitrary commands...

CVE-2005-0612

Cisco IP/VC Videoconferencing System 3510, 3520, 3525 and 3530 contain hard-coded default SNMP community strings, which allows remote attackers to gain access, cause a denial of service, and modify configuration...

CVE-2005-0496

The CVE-2005-0496 entry applies to Arkeia Network Backup Client 5.x, where hard-coded credentials act as a back door. This allows remote attackers to access the file system and, per connected sources, potentially execute arbitrary commands. The Nessus/PT-2005-1551 item notes a default/account in ...

CVE-2005-0496

Arkeia Network Backup Client 5.x contains hard-coded credentials that effectively serve as a back door, which allows remote attackers to access the file system and possibly execute arbitrary commands...

CVE-2005-0496

Arkeia Network Backup Client 5.x contains hard-coded credentials that effectively serve as a back door, which allows remote attackers to access the file system and possibly execute arbitrary commands...

PT-2005-1551 · Arkeia · Arkeia Network Backup Client

Name of the Vulnerable Software and Affected Versions: Arkeia Network Backup Client version 5.x Description: The issue concerns hard-coded credentials in the software, which act as a back door. This back door allows remote attackers to access the file system and possibly execute arbitrary command...

PT-2005-1470 · Citrusdb · Citrusdb

Name of the Vulnerable Software and Affected Versions: CitrusDB versions 0.3.6 and earlier Description: The issue allows remote attackers to bypass authentication and gain privileges by calculating the MD5 checksum of the user name combined with the "boogaadeeboo" string, which is hard-coded in t...

CVE-2005-0349

The CVE-2005-0349 entry covers BrightStor ARCserve Backup 11.1 UniversalAgent for UNIX, where the production release contains hard-coded credentials that enable remote access to the file system and may allow execution of arbitrary commands. Connected details specify a default/admin-like account w...

CVE-2005-0349

The production release of the UniversalAgent for UNIX in BrightStor ARCserve Backup 11.1 contains hard-coded credentials, which allows remote attackers to access the file system and possibly execute arbitrary commands...

[Full-Disclosure] iDEFENSE Security Advisory 02.10.05: Computer Associates BrightStor ARCserve Backup UniversalAgent Backdoor Vulnerability

Computer Associates BrightStor ARCserve Backup UniversalAgent Backdoor Vulnerability iDEFENSE Security Advisory 02.10.05 www.idefense.com/application/poi/display?id=198&type=vulnerabilities February 10, 2005 I. BACKGROUND BrightStor ARCserve Backup r11.1 delivers leading backup and restore...

CVE-2004-1322

Cisco Unity 2.x, 3.x, and 4.x, when integrated with Microsoft Exchange, has several hard coded usernames and passwords, which allows remote attackers to gain unauthorized access and change configuration settings or read outgoing or incoming e-mail messages...

CVE-2004-2050

eSeSIX Thintune thin clients running firmware 2.4.38 and earlier allow local users to gain privileges by pressing CTRL-SHIFT-ALT-DEL and entering the "maertsJ" password, which is hard-coded into lshell...

CVE-2004-1322

Cisco Unity 2.x, 3.x, and 4.x, when integrated with Microsoft Exchange, has several hard coded usernames and passwords, which allows remote attackers to gain unauthorized access and change configuration settings or read outgoing or incoming e-mail messages...

CVE-2002-0706

CVE-2002-0706 affects SurfControl SuperScout WebFilter’s Web Reports Server, specifically the UserManager.js component. The root cause is the use of weak encryption for administrator functions, with a hard-coded key inside a JavaScript function, enabling decryption of the admin password. This all...

iBill Management Script - Weak Hard-Coded Password

iBill Management Script - Weak Hard-Coded Password source: https://www.securityfocus.com/bid/3476/info iBill is an Internet billing company that provides secure payment processing for e-commerce. A vulnerability exists in iBill's CGI password management script called ibillpm.pl. The default...

iBill Management Script - Weak Hard-Coded Password

source: https://www.securityfocus.com/bid/3476/info iBill is an Internet billing company that provides secure payment processing for e-commerce. A vulnerability exists in iBill's CGI password management script called ibillpm.pl. The default password is the client's MASTERACCOUNT name plus two low...

CVE-2000-0784

sshd program in the Rapidstream 2.1 Beta VPN appliance has a hard-coded "rsadmin" account with a null password, which allows remote attackers to execute arbitrary commands via ssh...