Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:10778
Category:Web application abuses
Title:Unprotected SiteScope Service
Summary:The SiteScope web service has no password set. An attacker; who can connect to this server could view usernames and; passwords stored in the preferences section or reconfigure; the service.
Description:Summary:
The SiteScope web service has no password set. An attacker
who can connect to this server could view usernames and
passwords stored in the preferences section or reconfigure
the service.

Solution:
Make sure that a password is set in the configuration
for this service. Depending on where this server is located,
you may want to restrict access by IP address in addition to
username.

CVSS Score:
4.6

CVSS Vector:
AV:L/AC:L/Au:N/C:P/I:P/A:P

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-1999-0508
CopyrightCopyright (C) 2001 Digital Defense Inc.

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2021 E-Soft Inc. All rights reserved.