'Re: Infosec.19990526.compaq-im.a'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       bugtraq
Subject:    Re: Infosec.19990526.compaq-im.a
From:       Vacuum <vacuum () SWORD ! DAMOCLES ! COM>
Date:       1999-05-26 21:13:19
[Download RAW message or body]

Please disgregard previous post, the signature got in the way of a paste


 In addition to //Gabriel Sandberg, Infosec gabriel.sandberg@infosec.se's
 findings.

Web-Based Management is enabled, by default, when you install the Compaq
Server Management Agents for Windows NT.(CPQWMGMT.EXE) The web-enabled
Compaq Server Management Agents allow you to view subsystem and status
information from a web browser, either locally or remotely. Web-enabled
Service Management Agents are availible in all 4.x versions of Insight
Manager.

Compaq HTTP Server Version 1.2.15 (Pre-Release)


 The only user accounts available in the  Compaq Server Management
 Agent WEBEM release are listed below.


 http://111.111.111.111:2301/cpqlogin.htm

 account anonymous
 username anonymous
 password

 account user
 username user
 password public

 account operator
 username operator
 password operator

 account administrator
 username administrator
 password administrator

 http://111.111.111.111:2301/cpqlogin.htm?ChangePassword=yes
 is the url used to change the password. Unfortunately the password is
 the only information that can be changed and is stored in
 clear text in the following file.

c:\compaq\wbem\cpqhmmd.acl
-------------------------------------------------------------------------------------
Compaq-WBEM-AclFile, 1.1
      anonymous anonymous 737EEEFA7617ED94EDD74E659B83035F
      login in progress...  login in progress...
7A21DD9917C0C23907267FC07DBC7D12
      administrator administrator D6022D9B3FCA717CCEED36E640160478
51B02137D6BF719FC62F4940DBE1F3E6
      operator operator B5CE548356D1BEA5F1CFEE12FE9502C3
041D1015AEC9F60412C7F86E62D6672C
      user                                                            user
EC286E733A8892ADFC895611D1557557 C865DE636CA398F8523EDBE5700D457A

 Once you have found one wbem enabled machine, using compaq's HTTP
 Auto-Discovery Device List http://111.111.111.111:2301/cpqdev.htm
 It is trivial to locate other machines.

[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic