Summary
This host appears to be the running the Apache Tomcat Servlet engine with the default accounts still configured.
A potential intruder could reconfigure this service in a way that grants system access.
Solution
Change the default passwords by editing the
admin-users.xml file located in the /conf/users
subdirectory of the Tomcat installation.
Severity
Classification
-
CVE CVE-1999-0508 -
CVSS Base Score: 4.6
AV:L/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- CA Gateway Security Remote Code Execution Vulnerability
- Apple Safari Webkit Multiple Vulnerabilities - May13 (Mac OS X)
- Apple Safari 'SRC' Remote Denial Of Service Vulnerability
- Apple Safari 'setInterval()' Address Bar Spoofing Vulnerability (Win)
- Apple Safari Multiple Memory Corruption Vulnerabilities-02 Apr14 (Mac OS X)