CVE-2012-4362

EUVD-2012-4305
hydra.exe in HP SAN/iQ before 9.5 on the HP Virtual SAN Appliance has a hardcoded password of L0CAlu53R for the global$agent account, which allows remote attackers to obtain access to a management service via a login: request to TCP port 13838.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:S/C:N/I:P/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 95%
Affected Products (NVD)
VendorProductVersion
hpsan\/iq
9.5
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.exploit-db.com/exploits/18893/
http://www.exploit-db.com/exploits/18901/
http://www.kb.cert.org/vuls/id/441363
http://www.exploit-db.com/exploits/18893/
http://www.exploit-db.com/exploits/18901/
http://www.kb.cert.org/vuls/id/441363