Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> General >> Brightmail Control Center Default Account/Password


Vulnerability Assessment Details

Brightmail Control Center Default Account/Password

Vulnerability Assessment Summary
Checks for default account / password in Brightmail Control Center

Detailed Explanation for this Vulnerability Assessment

Summary :

The remote server uses known authentication credentials.

Description :

The remote host is running Symantec's Brightmail Control Center, a
web-based administration tool for Brightmail AntiSpam.

The installation of Brightmail Control Center on the remote host still
has an account 'admin' with the default password 'symantec'. An
attacker can exploit this issue to gain access of the Control Center
and any scanners it controls.

Solution :

Log in to the Brightmail Control Center and change the password for
the 'admin' user.

Network Security Threat Level:

High / CVSS Base Score : 7
(AV:R/AC:L/Au:NR/C:P/A:P/I:P/B:N)

Networks Security ID:

Vulnerability Assessment Copyright: This script is Copyright (C) 2005-2006 Tenable Network Security

Cables, Connectors

Promise VTrak M610i 16-bay iscsi/sata-3gb 3u raid storage system with 8.5TB
$599.99
Promise VTrak M610i 16-bay iscsi/sata-3gb 3u raid storage system with 8.5TB pictureDELL PowerEdge R710 Server 2xQuad-Core Xeon 3.06GHz + 192GB RAM + 8x600GB RAID
$998.88
DELL PowerEdge R710 Server 2xQuad-Core Xeon 3.06GHz + 192GB RAM + 8x600GB RAID pictureLOT OF 4 LSI Corp. SAS3442E-R SAS RAID PCI-e Adapter Controller Cards
$55.0
LOT OF 4 LSI Corp. SAS3442E-R SAS RAID PCI-e Adapter Controller Cards  pictureDell PERC H700 W56W0 RAID Controller
$60.0
Dell PERC H700 W56W0 RAID Controller picture


Discussions

No Discussions have been posted on this vulnerability.