Detections
Analytics

Sun Java ASP Server Default Admin Password

high Nessus Plugin ID 33437

Language:

Synopsis

The remote web server can be accessed with default admin credentials.

Description

The remote host is running Sun Java ASP server.

It is possible to access the remote server with default admin credentials.

Solution

Follow the steps outlined in the vendor advisory referenced above to change the admin password immediately.

See Also

https://docs.oracle.com/pls/topic/lookup?ctx=dsc&id=/source/817-2514-10/index.html

Plugin Details

Severity: High

ID: 33437

File Name: sun_java_asp_svr_default_passwd.nasl

Version: 1.13

Type: remote

Family: CGI abuses

Published: 7/8/2008

Updated: 1/19/2021

Supported Sensors: Nessus

Risk Information

CVSS v2

Risk Factor: High

Base Score: 7.5

Temporal Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Information

Excluded KB Items: global_settings/supplied_logins_only