This script is Copyright (C) 2003-2015 SensePost
The remote host has a web-enabled management application that uses
default login credentials.
The Compaq Web-based Management / HP System Management Agent active on
the remote host is configured with the default, or a predictable,
administrator password. Depending on the agents integrated, this allows
an attacker to view sensitive and verbose system information, and may
even allow more active attacks such as rebooting the remote system.
Furthermore, if an SNMP agent is configured on the remote host it may
disclose the SNMP community strings in use, allowing an attacker to set
device configuration if the 'write' community string is uncovered.
Set a strong password for the administrator account.
Risk factor :
High / CVSS Base Score : 7.5
CVSS Temporal Score : 7.5
Get Nessus Professional to scan unlimited IPs, run compliance checks & moreBuy Nessus Professional Now