Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> General >> Brightmail Control Center Default Account/Password


Vulnerability Assessment Details

Brightmail Control Center Default Account/Password

Vulnerability Assessment Summary
Checks for default account / password in Brightmail Control Center

Detailed Explanation for this Vulnerability Assessment

Summary :

The remote server uses known authentication credentials.

Description :

The remote host is running Symantec's Brightmail Control Center, a
web-based administration tool for Brightmail AntiSpam.

The installation of Brightmail Control Center on the remote host still
has an account 'admin' with the default password 'symantec'. An
attacker can exploit this issue to gain access of the Control Center
and any scanners it controls.

Solution :

Log in to the Brightmail Control Center and change the password for
the 'admin' user.

Network Security Threat Level:

High / CVSS Base Score : 7
(AV:R/AC:L/Au:NR/C:P/A:P/I:P/B:N)

Networks Security ID:

Vulnerability Assessment Copyright: This script is Copyright (C) 2005-2006 Tenable Network Security

Cables, Connectors

Great Mother of z/OS --> IBM 370 Mainframe on PC --> myMVS
$14.95
Great Mother of z/OS  -->  IBM 370 Mainframe on PC --> myMVS pictureApple IIc Flat Panel Display
$680.0
Apple IIc Flat Panel Display pictureVintage Digital DEC Microvax 3100-10E, 3 Hard Drives, RAM, H7063-AB PSU, Tested
$399.95
Vintage Digital DEC Microvax 3100-10E, 3 Hard Drives, RAM, H7063-AB PSU, Tested pictureVintage Digital DEC Microvax 3100-10, 2 Hard Drives, RAM, H7821-00 PSU, Tested
$349.95
Vintage Digital DEC Microvax 3100-10, 2 Hard Drives, RAM, H7821-00 PSU, Tested picture


Discussions

No Discussions have been posted on this vulnerability.