[prev in list] [next in list] [prev in thread] [next in thread]
List: bugtraq
Subject: Re: Infosec.19990526.compaq-im.a
From: Vacuum <vacuum () SWORD ! DAMOCLES ! COM>
Date: 1999-05-26 21:13:19
[Download RAW message or body]
Please disgregard previous post, the signature got in the way of a paste
In addition to //Gabriel Sandberg, Infosec gabriel.sandberg@infosec.se's
findings.
Web-Based Management is enabled, by default, when you install the Compaq
Server Management Agents for Windows NT.(CPQWMGMT.EXE) The web-enabled
Compaq Server Management Agents allow you to view subsystem and status
information from a web browser, either locally or remotely. Web-enabled
Service Management Agents are availible in all 4.x versions of Insight
Manager.
Compaq HTTP Server Version 1.2.15 (Pre-Release)
The only user accounts available in the Compaq Server Management
Agent WEBEM release are listed below.
http://111.111.111.111:2301/cpqlogin.htm
account anonymous
username anonymous
password
account user
username user
password public
account operator
username operator
password operator
account administrator
username administrator
password administrator
http://111.111.111.111:2301/cpqlogin.htm?ChangePassword=yes
is the url used to change the password. Unfortunately the password is
the only information that can be changed and is stored in
clear text in the following file.
c:\compaq\wbem\cpqhmmd.acl
-------------------------------------------------------------------------------------
Compaq-WBEM-AclFile, 1.1
anonymous anonymous 737EEEFA7617ED94EDD74E659B83035F
login in progress... login in progress...
7A21DD9917C0C23907267FC07DBC7D12
administrator administrator D6022D9B3FCA717CCEED36E640160478
51B02137D6BF719FC62F4940DBE1F3E6
operator operator B5CE548356D1BEA5F1CFEE12FE9502C3
041D1015AEC9F60412C7F86E62D6672C
user user
EC286E733A8892ADFC895611D1557557 C865DE636CA398F8523EDBE5700D457A
Once you have found one wbem enabled machine, using compaq's HTTP
Auto-Discovery Device List http://111.111.111.111:2301/cpqdev.htm
It is trivial to locate other machines.
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic