|
Family: Netware --> Category: infos
Novell Groupwise Servlet Manager default password Vulnerability Scan
Vulnerability Scan Summary Checks for Netware servlet server default password
Detailed Explanation for this Vulnerability Test
The Novell Groupwise servlet server is configured with the default password.
As a result, users could be denied access to mail and other servlet
based resources.
To test this finding:
https:///servlet/ServletManager/
enter 'servlet' for the user and 'manager' for the password.
Solution: Change the default password
Edit SYS:\JAVA\SERVLETS\SERVLET.PROPERTIES
change the username and password in this section
servlet.ServletManager.initArgs=datamethod=POST,user=servlet,password=manager,bgcolor
See also: http://www.securityfocus.com/bid/3697
Threat Level: Medium
Click HERE for more information and discussions on this network vulnerability scan.
|