Vulnerabilities > CVE-2004-0311 - Unspecified vulnerability in APC Ap9606 3.0/3.0.1
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
American Power Conversion (APC) Web/SNMP Management SmartSlot Card 3.0 through 3.0.3 and 3.21 are shipped with a default password of TENmanUFactOryPOWER, which allows remote attackers to gain unauthorized access.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Hardware | 2 |
Nessus
NASL family SNMP NASL id SNMP_DEFAULT_COMMUNITIES.NASL description It is possible to obtain the default community names of the remote SNMP server. An attacker can use this information to gain more knowledge about the remote host or to change the configuration of the remote system (if the default community allows such modifications). last seen 2020-06-01 modified 2020-06-02 plugin id 10264 published 2002-11-25 reporter This script is Copyright (C) 2005-2018 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/10264 title SNMP Agent Default Community Names NASL family Misc. NASL id APC_SMARTSLOT_FACTORY_PASSWORD.NASL description The remote APC Smartslot Web/SNMP Management card ships with a default username and password. An attacker can use this information to access the remote APC device with any username and the factory password last seen 2020-06-01 modified 2020-06-02 plugin id 12066 published 2004-02-18 reporter This script is Copyright (C) 2004-2018 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/12066 title APC SmartSlot Web/SNMP Management Card Default Password