[Forgot Password]
Login  Register Subscribe

23631

 
 

115083

 
 

97389

 
 

909

 
 

78730

 
 

109

Paid content will be excluded from the download.


Download | Alert*
CVE
view XML

CVE-2010-4115

Date: (C)2010-12-17   (M)2017-08-18
 
CVSS Score: 9.0Access Vector: NETWORK
Exploitability Subscore: 8.0Access Complexity: LOW
Impact Subscore: 10.0Authentication: SINGLE_INSTANCE
 Confidentiality: COMPLETE
 Integrity: COMPLETE
 Availability: COMPLETE











HP StorageWorks Modular Smart Array P2000 G3 firmware TS100R011, TS100R025, TS100P002, TS200R005, TS201R014, and TS201R015 installs an undocumented admin account with a default "!admin" password, which allows remote attackers to gain privileges.

Reference:
SECTRACK-1024904
http://www.securityfocus.com/archive/1/archive/1/515251/100/0/threaded
http://www.securityfocus.com/archive/1/archive/1/515196/100/0/threaded
http://www.securityfocus.com/archive/1/archive/1/515262/100/0/threaded
SECUNIA-42583
BID-45386
ADV-2010-3250
HPSBST02620
IAVM:2010-B-0118
SSRT100356
storageworks-default-account(64125)

CWE    1
CWE-255

© 2013 SecPod Technologies