CVE-2007-4598

IBM SurePOS 500 has (1) a default password of "12345" for the manager and (2) blank default passwords for operator accounts.

CVSS v2.0 : MEDIUM

Vector : AV:L/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 3.9 / Impact : 6.4

References

Link	Resource
http://isc.sans.org/diary.html?storyid=3323
http://osvdb.org/45835
http://www.collegeid.com/SurePOS%20500%20Manual.pdf	URL Repurposed
http://www.hackerfactor.com/papers/cc-pos-20.pdf
http://isc.sans.org/diary.html?storyid=3323
http://osvdb.org/45835
http://www.collegeid.com/SurePOS%20500%20Manual.pdf	URL Repurposed
http://www.hackerfactor.com/papers/cc-pos-20.pdf

Configurations

Configuration 1 (hide)

cpe:2.3:h:ibm:surepos_500:*:*:*:*:*:*:*:*

History

21 Nov 2024, 00:35

Type	Values Removed	Values Added
References	~~() http://isc.sans.org/diary.html?storyid=3323 -~~	() http://isc.sans.org/diary.html?storyid=3323 -
References	~~() http://osvdb.org/45835 -~~	() http://osvdb.org/45835 -
References	~~() http://www.collegeid.com/SurePOS%20500%20Manual.pdf - URL Repurposed~~	() http://www.collegeid.com/SurePOS%20500%20Manual.pdf - URL Repurposed
References	~~() http://www.hackerfactor.com/papers/cc-pos-20.pdf -~~	() http://www.hackerfactor.com/papers/cc-pos-20.pdf -

14 Feb 2024, 01:17

Type	Values Removed	Values Added
References	~~(MISC) http://www.collegeid.com/SurePOS%20500%20Manual.pdf -~~	(MISC) http://www.collegeid.com/SurePOS%20500%20Manual.pdf - URL Repurposed

Information

Published : 2007-08-30 18:17

Updated : 2024-11-21 00:35

NVD link : CVE-2007-4598

Mitre link : CVE-2007-4598

CVE.ORG link : CVE-2007-4598

JSON object : View

Products Affected

ibm

CWE

CWE-255

Credentials Management Errors