Detections
Analytics

ISS ICEcap Default Password

medium Nessus Plugin ID 10410

Synopsis

The remote host contains an application with a default password.

Description

The ICEcap package has a default login of 'iceman' with no password.

An attacker may use this fact to log into the console and/or push false alerts on port 8082.

In addition to this, an attacker may inject code in ICEcap v2.0.23 and below.

Solution

Set a strong password on the 'iceman' account.

See Also

http://web.archive.org/web/20081226180826/http://www.iss.net:80/security_center/advice/Support/KB/q000164/default.htm

http://web.archive.org/web/20081226185807/http://www.iss.net:80/security_center/advice/Support/KB/q000166/default.htm

http://web.archive.org/web/20081228095802/http://www.iss.net:80/security_center/advice/Support/KB/q000167/default.htm

Plugin Details

Severity: Medium

ID: 10410

File Name: icecap_default_pw.nasl

Version: 1.31

Type: remote

Family: CGI abuses

Published: 5/18/2000

Updated: 1/19/2021

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 4.2

CVSS v2

Risk Factor: Medium

Base Score: 5

Temporal Score: 4.1

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N

Vulnerability Information

Excluded KB Items: global_settings/supplied_logins_only

Exploit Available: true

Exploit Ease: Exploits are available

Vulnerability Publication Date: 9/12/2002

Reference Information

CVE: CVE-2000-0350

BID: 1216