CVE-2002-2445 - GE Healthcare Millennium MG, NC, and MyoSIGHT has a default password of (1) root.genie for the root

CVE-2002-2445

Summary

GE Healthcare Millennium MG, NC, and MyoSIGHT has a default password of (1) root.genie for the root user, (2) "service." for the service user, (3) admin.genie for the admin user, (4) reboot for the reboot user, and (5) shutdown for the shutdown user, which has unspecified impact and attack vectors.

References

Vulnerable Configurations

cpe:2.3:o:gehealthcare:millennium_mg:*:*:*:*:*:*:*:*
cpe:2.3:o:gehealthcare:millennium_mg:*:*:*:*:*:*:*:*
cpe:2.3:o:gehealthcare:millennium_myosight:*:*:*:*:*:*:*:*
cpe:2.3:o:gehealthcare:millennium_myosight:*:*:*:*:*:*:*:*
cpe:2.3:o:gehealthcare:millennium_nc:*:*:*:*:*:*:*:*
cpe:2.3:o:gehealthcare:millennium_nc:*:*:*:*:*:*:*:*

CVSS

Base:	10.0 (as of 03-09-2015 - 14:55)
Impact:
Exploitability:

CWE

NVD-CWE-noinfo

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
COMPLETE	COMPLETE	COMPLETE

cvss-vector via4

AV:N/AC:L/Au:N/C:C/I:C/A:C

refmap via4

confirm	http://apps.gehealthcare.com/servlet/ClientServlet/2338955-100.pdf?REQ=RAA&DIRECTION=2338955-100&FILENAME=2338955-100.pdf&FILEREV=1&DOCREV_ORG=1 http://apps.gehealthcare.com/servlet/ClientServlet/2354459-100.pdf?REQ=RAA&DIRECTION=2354459-100&FILENAME=2354459-100.pdf&FILEREV=4&DOCREV_ORG=4
misc	http://www.forbes.com/sites/thomasbrewster/2015/07/10/vulnerable-breasts/ https://twitter.com/digitalbond/status/619250429751222277

Last major update

03-09-2015 - 14:55

Published

04-08-2015 - 14:59

Last modified

03-09-2015 - 14:55