The application server in Trustwave WebDefend Enterprise before 5.0 uses hardcoded console credentials, which makes it easier for remote attackers to read security-event data by using the remote console GUI to connect to the management port.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Webdefend | Trustwave | * | 3.0 (including) |
Webdefend | Trustwave | 2.0 (including) | 2.0 (including) |