673 matches found
Default Password (ibmdb2) for 'db2fenc1' Account
The account 'db2fenc1' has the password 'ibmdb2'. An attacker may use this to gain further privileges on this system. %NASLMINLEVEL 70300 This script was written by Chris Foster See the Nessus Scripts License for details Changes by Tenable Add globalsettings/suppliedloginsonly scriptexcludekey...
Default Password (ibmdb2) for 'db2inst1' Account
The account 'db2inst1' has the password 'ibmdb2'. An attacker may use this to gain further privileges on this system. %NASLMINLEVEL 70300 This script was written by Chris Foster See the Nessus Scripts License for details Changes by Tenable Add globalsettings/suppliedloginsonly scriptexcludekey...
iisPROTECT Unpassworded Administrative Interface
The remote host is running iisprotect, an IIS add-on to protect the pages served by this server. However, the administration module of this interface has not been password protected. As a result, an attacker may perform administrative tasks without any authentication. %NASLMINLEVEL 70300 C Tenabl...
Linksys Router Default Password (admin)
The remote Linksys device has its default password 'admin' set. An attacker may connect to it and reconfigure it using this account. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid11522; scriptversion"1.22"; scriptcvsdate"Date: 2018/08/07 16:46:50";...
Microsoft Windows Administrator Default Password Detection (W32/Deloder Worm Susceptibility)
W32/Deloder is a worm that tries to connect to a remote share by using a list of built-in administrator passwords. Nessus was able to connect to this host with one of these credentials. The worm W32/Deloder may use it to break into the remote host and upload infected data in the remote shares. C...
Unpassworded 'root' Account
The account 'root' has no password set. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. account = "root"; include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid11245; scriptversion"1.32"; scriptsetattributeattribute:"pluginmodificationdate", value:"2022/04/11";...
Motorola Vanguard with No Password (telnet check)
This device is a Motorola Vanguard router and has no password set. An attacker can reconfigure this device without providing any authentication. This script was written by Geoff Humes See the Nessus Scripts License for details Changes by Tenable: - Revised plugin title 9/2/09 - Revised plugin tit...
Radmin (Remote Administrator) Port 4899 Detection
Radmin Remote Administrator, a popular remote control software application for Windows, is running on this port. Make sure that a strong password is used, otherwise an attacker may brute-force it and control the machine. C Tenable Network Security, Inc. include"compat.inc"; ifdescription...
Cayman DSL Router Single Character String Authentication Bypass.
The remote host appears to be a Cayman DSL router. This device contains an insecure user account - it was possible to login with a username of '' and no password. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. Script audit and contributions from Carmichael Security Erik Anderson nb: this...
Cisco IOS software vulnerable to DoS via HTTP request containing "?/"
Overview A vulnerability exists in multiple versions of Cisco's Internetworking Operating System IOS software that allows an attacker to force affected switches and routers to crash and reboot. Description To exploit this vulnerability, the IOS HTTP interface must be enabled and the attacker must...
Axis Camera Default Password
The remote host seems to be an Axis Network Camera. It was possible to log into the remote host with the default credentials 'root/pass'. An attacker may use these credentials to trivially access the system. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. Script audit and contributions from...
PT-1998-1090 · Unix · Unix
Name of the Vulnerable Software and Affected Versions: Unix affected versions not specified Description: The issue concerns a Unix account with a default, null, blank, or missing password. Recommendations: For all affected versions, ensure that strong, unique passwords are set for all Unix accoun...
PT-1997-1142 · Microsoft · Windows Nt
Name of the Vulnerable Software and Affected Versions: Windows NT affected versions not specified Description: The issue concerns a Windows NT local user or administrator account that has a guessable password. Recommendations: For all affected versions, ensure that strong, unique passwords are se...