Detections
Analytics

Junos Space WebUI Default Credentials

high Nessus Plugin ID 66721

Language:

Synopsis

A web application on the remote host is protected using default credentials.

Description

The Junos Space WebUI interface on the remote host has the 'super' user account secured with the default password. A remote, unauthenticated attacker could exploit this to gain administrative access to the web interface.

Solution

Secure the 'super' user account with a strong password.

See Also

https://kb.juniper.net/InfoCenter/index?page=content&id=KB26220

Plugin Details

Severity: High

ID: 66721

File Name: junos_space_webui_default_creds.nasl

Version: 1.5

Type: remote

Family: CGI abuses

Published: 5/31/2013

Updated: 1/19/2021

Supported Sensors: Nessus

Risk Information

CVSS v2

Risk Factor: High

Base Score: 7.5

Temporal Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Information

CPE: cpe:/a:juniper:junos_space

Required KB Items: www/junos_space

Excluded KB Items: global_settings/supplied_logins_only