APC SmartSlot Web/SNMP Management Card Default Password

This script is Copyright (C) 2004-2011 Tenable Network Security, Inc.

Synopsis :

The remote host has a default password set.

Description :

The remote APC Smartslot Web/SNMP Management card ships with a default
username and password. An attacker can use this information to access
the remote APC device with any username and the factory password

See also :


Solution :

Upgrade the firmware according to the APC recommendations.

Risk factor :

Critical / CVSS Base Score : 10.0
CVSS Temporal Score : 8.7
Public Exploit Available : true

Family: Misc.

Nessus Plugin ID: 12066 (apc_smartslot_factory_password.nasl)

Bugtraq ID: 9681

CVE ID: CVE-2004-0311