ID CVE-2005-3344
Summary The default installation of Horde 3.0.4 contains an administrative account with a blank password, which allows remote attackers to gain access.
References
Vulnerable Configurations
  • cpe:2.3:a:horde:horde:3.0.4:*:*:*:*:*:*:*
    cpe:2.3:a:horde:horde:3.0.4:*:*:*:*:*:*:*
CVSS
Base: 10.0 (as of 11-07-2017 - 01:33)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:N/AC:L/Au:N/C:C/I:C/A:C
refmap via4
bid 15337
debian DSA-884
misc http://www.networkscanning.com/Horde-Default-Admin-Password-Vulnerability-VSS_20171.html
osvdb 24117
xf horde-default-account(24576)
Last major update 11-07-2017 - 01:33
Published 16-11-2005 - 07:42
Last modified 11-07-2017 - 01:33
Back to Top