K2 KeyServer Default Credentials

High Nessus Plugin ID 27041


The remote service is protected with default credentials.


The remote K2 KeyServer installation is configured to use default credentials to control access. Knowing these, an attacker can gain control of the affected application.


Change the password for the 'Administrator' account using KeyConfigure.

Plugin Details

Severity: High

ID: 27041

File Name: keyserver_default_creds.nasl

Version: $Revision: 1.13 $

Type: remote

Family: Misc.

Published: 2007/10/12

Modified: 2016/11/23

Dependencies: 11153

Risk Information

Risk Factor: High


Base Score: 7.5

Temporal Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Temporal Vector: CVSS2#E:H/RL:ND/RC:ND

Vulnerability Information

Excluded KB Items: global_settings/supplied_logins_only