CA Host-Based Intrusion Prevention System Server Default Credentials

high Nessus Plugin ID 27526

Synopsis

The remote web service is protected with default credentials.

Description

The remote host is running Computer Associates' Host-Based Intrusion Prevention System (CA HIPS) Server, an intrusion prevention system for Windows.

The remote installation of CA HIPS Server is configured to use default credentials to control access. Knowing these, an attacker can gain control of the affected application.

Solution

Change the password for the 'admin' account by logging into the CA HIPS server, navigating to 'Global Settings / Administrators', and editing the 'admin' account.

Plugin Details

Severity: High

ID: 27526

File Name: ca_hips_default_creds.nasl

Version: 1.17

Type: remote

Family: CGI abuses

Published: 10/23/2007

Updated: 1/19/2021

Supported Sensors: Nessus

Risk Information

CVSS v2

Risk Factor: High

Base Score: 7.5

Temporal Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Information

Excluded KB Items: global_settings/supplied_logins_only