Vulnerabilities > CVE-2009-1745 - Credentials Management vulnerability in Armorlogic Profense web Application Firewall 2.4
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Armorlogic Profense Web Application Firewall before 2.2.22, and 2.4.x before 2.4.4, has a default root password hash, and permits password-based root logins over SSH, which makes it easier for remote attackers to obtain access.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |