Summary
This host is running the Sun JavaServer. This
server has the default username and password
of admin. An attacker can use this to gain
complete control over the web server
configuration and possibly execute commands.
Solution
Set the web administration interface to require a
complex password. For more information please
consult the documentation located in the /system/ directory of the web server.
Severity
Classification
-
CVE CVE-1999-0508 -
CVSS Base Score: 4.6
AV:L/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- Apple Safari Webcore Webkit 'XSSAuditor.cpp' XSS Vulnerability (Mac OS X)
- Apple Mac OS X Authentication Bypass Vulnerability
- Adobe Flash Player Multiple Security Bypass Vulnerabilities - 01 Feb14 (Windows)
- Apple Safari Webkit Multiple Vulnerabilities - March 2011
- Apple Safari Multiple Memory Corruption Vulnerabilities-02 Apr14 (Mac OS X)