WinComLPD LPD Monitoring Server Default Credentials

High Nessus Plugin ID 30186


The remote service is protected with default credentials.


The remote LPD Monitoring Server port is configured to use the default credentials to control access. Knowing these, an attacker can gain administrative control of the affected application.


Edit the application's 'lpdservice.ini' file and change the credentials in the 'GENERAL CONFIGURE' section. Then, restart the service to put the changes into effect.

Plugin Details

Severity: High

ID: 30186

File Name: wincomlpd_lpdservice_default_creds.nasl

Version: $Revision: 1.12 $

Type: remote

Family: Misc.

Published: 2008/02/06

Modified: 2016/11/29

Dependencies: 30185

Risk Information

Risk Factor: High


Base Score: 7.5

Temporal Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Temporal Vector: CVSS2#E:H/RL:ND/RC:ND

Vulnerability Information

Excluded KB Items: global_settings/supplied_logins_only