Vulnerabilities > CVE-2010-0444 - Credentials Management vulnerability in HP Operations Agent 8.51/8.52/8.53

047910
CVSS 10.0 - CRITICAL
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
network
low complexity
hp
sun
CWE-255
critical

Summary

HP Operations Agent 8.51, 8.52, 8.53, and 8.60 on Solaris 10 uses a blank password for the opc_op account, which allows remote attackers to execute arbitrary code via unspecified vectors.

Common Weakness Enumeration (CWE)