BMC Patrol component, when installed with Compaq Insight Management Agent 4.23 and earlier, or Management Agents for Servers 4.40 and earlier, creates a PFCUser account with a default password and potentially dangerous privileges.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Insight_management_agent | Compaq | * | 4.20 (including) |
| Management_agents_for_servers | Compaq | * | 4.40 (including) |
References
- http://marc.info/?l=ntbugtraq\u0026m=93542118727732\u0026w=2
- http://marc.info/?l=ntbugtraq\u0026m=93654336516711\u0026w=2
- http://marc.info/?l=ntbugtraq\u0026m=93759822430801\u0026w=2
- http://marc.info/?l=ntbugtraq\u0026m=94183795025294\u0026w=2
- http://www.compaq.com/products/servers/management/advisory.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/3231
- http://marc.info/?l=ntbugtraq\u0026m=93542118727732\u0026w=2
- http://marc.info/?l=ntbugtraq\u0026m=93654336516711\u0026w=2
- http://marc.info/?l=ntbugtraq\u0026m=93759822430801\u0026w=2
- http://marc.info/?l=ntbugtraq\u0026m=94183795025294\u0026w=2
- http://www.compaq.com/products/servers/management/advisory.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/3231