Vulnerabilities > CVE-2004-2048 - Unspecified vulnerability in Esesix products
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
radmin in eSeSIX Thintune thin clients running firmware 2.4.38 and earlier starts a process port 25072 that can be accessed with a default "jstwo" password, which allows remote attackers to gain access.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Hardware | 7 |
References
- http://marc.info/?l=bugtraq&m=109068491801021&w=2
- http://marc.info/?l=bugtraq&m=109068491801021&w=2
- http://secunia.com/advisories/12154
- http://secunia.com/advisories/12154
- http://securitytracker.com/id?1010770
- http://securitytracker.com/id?1010770
- http://www.osvdb.org/8246
- http://www.osvdb.org/8246
- http://www.securityfocus.com/bid/10794
- http://www.securityfocus.com/bid/10794
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16790
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16790