Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-4362

Overview

Vulnerability Score 4.0 4.0
CVE Id CVE-2012-4362
Last Modified 21 Aug 2012 02:24:46
Published 20 Aug 2012 06:55:01
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2012-4362

Summary

hydra.exe in HP SAN/iQ before 9.5 on the HP Virtual SAN Appliance has a hardcoded password of L0CAlu53R for the global$agent account, which allows remote attackers to obtain access to a management service via a login: request to TCP port 13838.

Vulnerable Systems

Application

  • Hp San%2fiq 9.5


References

CERT-VN - VU#441363

EXPLOIT-DB - 18901

EXPLOIT-DB - 18893


Last Updated: 27 May 2016 10:57:35