MultiTech Proxy Server Default Null Password

Critical Nessus Plugin ID 11504


The remote Proxy server uses a default password.


The remote MultiTech Proxy Server has no password set for the 'supervisor' account.

An attacker may log in the remote host and reconfigure it easily.


Set a strong password for the 'supervisor' account.

See Also

Plugin Details

Severity: Critical

ID: 11504

File Name: multitech_proxy_default_pwd.nasl

Version: $Revision: 1.15 $

Type: remote

Family: Web Servers

Published: 2003/03/30

Modified: 2016/10/27

Dependencies: 10107, 67257, 17975, 10386

Risk Information

Risk Factor: Critical


Base Score: 10

Temporal Score: 9.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:H/RL:W/RC:C

Vulnerability Information

Required KB Items: www/apache

Excluded KB Items: global_settings/supplied_logins_only

Exploit Available: true

Exploit Ease: No exploit is required

Vulnerability Publication Date: 2002/12/11

Reference Information

CVE: CVE-2002-1629

BID: 7203

OSVDB: 19107