Summary
This host appears to be the running the Apache Tomcat Servlet engine with the default accounts still configured.
A potential intruder could reconfigure this service in a way that grants system access.
Solution
Change the default passwords by editing the
admin-users.xml file located in the /conf/users
subdirectory of the Tomcat installation.
Severity
Classification
-
CVE CVE-1999-0508 -
CVSS Base Score: 4.6
AV:L/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- Adobe Reader Plugin Signature Bypass Vulnerability (Windows)
- Apple Safari 'Webkit' Multiple Vulnerabilities-01 Mar14 (Mac OS X)
- Adobe Reader Old Plugin Signature Bypass Vulnerability (Windows)
- Apache Tomcat AJP Request Remote Denial Of Service Vulnerability
- Apple Safari Address Bar Spoofing Vulnerability june-10 (Win)