Applied Watch Command Center allows remote attackers to conduct unauthorized activities without authentication, such as (1) add new users to a console, as demonstrated using appliedsnatch.c, or (2) add spurious IDS rules to sensors, as demonstrated using addrule.c.
http://www.bugtraq.org/advisories/_BSSADV-0000.txt
http://marc.info/?l=bugtraq&m=107031196324376&w=2