Wyse Device Manager Default FTP Account

High Nessus Plugin ID 40332


The remote FTP server has an account that is protected with default credentials.


The remote FTP server has an account with a known username / password combination, possibly created as part of an installation of Wyse Device Manager. An attacker may be able to use this to gain authenticated access to the system, which could allow for other attacks against the affected application and host.


Change the password associated with the reported username.

Plugin Details

Severity: High

ID: 40332

File Name: wyse_wdm_default_ftp_account.nasl

Version: $Revision: 1.11 $

Type: remote

Family: FTP

Published: 2009/07/20

Modified: 2017/03/03

Dependencies: 10990, 10092

Risk Information

Risk Factor: High


Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P


Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Vulnerability Information

CPE: cpe:/a:dell:wyse_device_manager

Excluded KB Items: global_settings/supplied_logins_only