CoSoSys Endpoint Protector 4 Predictable Password

high Nessus Plugin ID 62942


Accounts on the remote host have easily predictable passwords.


The remote CoSoSys Endpoint Protector 4 is affected by a password disclosure flaw.

Specifically, the 'epproot' account is set to the default password 'eroot!00($SUM)RO', where ($SUM) is the sum of the 9 digits in the appliance serial number.


Change the password for this account.

Plugin Details

Severity: High

ID: 62942

File Name: cososys_endpoint_protector_predictable_password.nasl

Version: 1.8

Type: remote

Family: Misc.

Published: 11/16/2012

Updated: 7/6/2018

Supported Sensors: Nessus

Risk Information


Risk Factor: Medium

Score: 6.7


Risk Factor: High

Base Score: 7.5

Temporal Score: 5.9

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Information

CPE: cpe:/a:cososys:endpoint_protector

Required KB Items: www/cososys_endpoint_protector

Excluded KB Items: global_settings/supplied_logins_only

Exploit Available: true

Exploit Ease: Exploits are available

Vulnerability Publication Date: 9/17/2012

Reference Information

CVE: CVE-2012-2994

BID: 55570

CERT: 591667