Symantec ON Command CCM 5.4.x and iCommand 3.0.x has four default usernames and passwords, one of which is hardcoded, which allows remote attackers to gain unauthorized access.
Name | Vendor | Start Version | End Version |
---|---|---|---|
On_command_ccm | Symantec | 5.0 (including) | 5.0 (including) |
On_command_ccm | Symantec | 5.1 (including) | 5.1 (including) |
On_command_ccm | Symantec | 5.2 (including) | 5.2 (including) |
On_command_ccm | Symantec | 5.3 (including) | 5.3 (including) |
On_command_ccm | Symantec | 5.4 (including) | 5.4 (including) |
On_icommand | Symantec | 3.0 (including) | 3.0 (including) |