Hardcoded Password Vulnerability in HP SAN/iQ

Hardcoded Password Vulnerability in HP SAN/iQ

CVE-2012-4362 · MEDIUM Severity

AV:N/AC:L/AU:S/C:N/I:P/A:N

hydra.exe in HP SAN/iQ before 9.5 on the HP Virtual SAN Appliance has a hardcoded password of L0CAlu53R for the global$agent account, which allows remote attackers to obtain access to a management service via a login: request to TCP port 13838.

Learn more about our Web Application Penetration Testing UK.