CVE-2004-1694

Published: Sep 21, 2004Modified: Apr 16, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

Symantec ON Command CCM 5.4.x and iCommand 3.0.x has four default usernames and passwords, one of which is hardcoded, which allows remote attackers to gain unauthorized access.

Affected (6)

Products: Symantec: On Command Ccm, On Icommand

2 products

Configuration A

6 vulnerable

Vulnerable Software	Affected Versions
Symantec On Command Ccm	Version 5.0
Symantec On Command Ccm	Version 5.1
Symantec On Command Ccm	Version 5.2
Symantec On Command Ccm	Version 5.3
Symantec On Command Ccm	Version 5.4
Symantec On Icommand	Version 3.0

References (10)

http://marc.info/?l=bugtraq&m=109571689621784&w=2

Source: cve@mitre.org

http://secunia.com/advisories/12604

Source: cve@mitre.org

ExploitPatchVendor Advisory

http://www.sarc.com/avcenter/security/Content/2004.09.29.html

Source: cve@mitre.org

Vendor Advisory

http://www.securityfocus.com/bid/11225

Source: cve@mitre.org

PatchVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/17447

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=109571689621784&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/12604

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitPatchVendor Advisory

http://www.sarc.com/avcenter/security/Content/2004.09.29.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.securityfocus.com/bid/11225

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/17447

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.