Vulnerabilities > CVE-2002-0774 - Unspecified vulnerability in Hosting Controller Hosting Controller

CVSS 10.0 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

low complexity

hosting-controller

critical

NVD

Published: 2002-08-12

Updated: 2008-09-05

Summary

Hosting Controller creates a default user AdvWebadmin with a default password, which could allow remote attackers to gain privileges if the password is not changed.

Vulnerable Configurations

Part	Description	Count
Application	Hosting_Controller Hosting Controller Hosting Controller 1.1 Hosting Controller Hosting Controller 1.3 Hosting Controller Hosting Controller 1.4 Hosting Controller Hosting Controller 1.4.1 Hosting Controller Hosting Controller 1.4B	5

References

http://archives.neohapsis.com/archives/bugtraq/2002-05/0168.html
http://www.iss.net/security_center/static/9131.php
http://www.securityfocus.com/bid/4779