Lucene search

MitreCVE-2004-0311

HistoryNov 23, 2004 - 5:00 a.m.

CVE-2004-0311

2004-11-2305:00:00

mitre

web.nvd.nist.gov

cve-2004-0311

american power conversion

apc

websnmp

management

smartslot card

default password vulnerability

unauthorized access

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

EPSS

0.012

Percentile

85.5%

JSON

American Power Conversion (APC) Web/SNMP Management SmartSlot Card 3.0 through 3.0.3 and 3.21 are shipped with a default password of TENmanUFactOryPOWER, which allows remote attackers to gain unauthorized access.

Affected configurations

Nvd

Node

apcap9606Match3.0

apcap9606Match3.0.1

VendorProductVersionCPE
apcap96063.0cpe:2.3:h:apc:ap9606:3.0:*:*:*:*:*:*:*
apcap96063.0.1cpe:2.3:h:apc:ap9606:3.0.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
apc	ap9606	3.0	cpe:2.3:h:apc:ap9606:3.0:::::::*
apc	ap9606	3.0.1	cpe:2.3:h:apc:ap9606:3.0.1:::::::*

References

marc.info/?l=bugtraq&m=107703696631367&w=2

marc.info/?l=bugtraq&m=107721020803565&w=2

nam-en.apc.com/cgi-bin/nam_en.cfg/php/enduser/std_adp.php?p_faqid=3131&p_created=1077139129

www.securityfocus.com/bid/9681

exchange.xforce.ibmcloud.com/vulnerabilities/15238

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

EPSS

0.012

Percentile

85.5%

JSON

Related for CVE-2004-0311