[NEWS] Default Password List (Default passwords sometimes stay for good)

• Previous message: SecuriTeam: "[EXPL] Wu-FTPd Remote DoS (/bin/ls)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: list@securiteam.com
Date: 2 Nov 2003 16:12:38 +0200

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com
- - promotion

The SecuriTeam alerts list - Free, Accurate, Independent.

Get your security news from a reliable source.
http://www.securiteam.com/mailinglist.html

- - - - - - - - -

  Default Password List (Default passwords sometimes stay for good)
------------------------------------------------------------------------

SUMMARY

Many of today's software and hardware come with default passwords. Those
passwords are meant to be temporary, but in many cases those passwords
aren't changed by administrators, allowing anyone to access the equipment
with elevated rights.

We provide here a link to a very large list of default passwords, sorted
by the different products.

DETAILS

 * HTML version: <http://63.230.73.253/dad400.htm>
http://63.230.73.253/dad400.htm
 * XLS version: <http://63.230.73.253/dad400.xls>
http://63.230.73.253/dad400.xls
 * CSV version: <http://63.230.73.253/dad400.txt>
http://63.230.73.253/dad400.txt

ADDITIONAL INFORMATION

Updates available at: <http://www.swordsoft.com/publications>
http://www.swordsoft.com/publications.

The information has been provided by <mailto:eric@swordsoft.com> Eric
Knight.

========================================

This bulletin is sent to members of the SecuriTeam mailing list.
To unsubscribe from the list, send mail with an empty subject line and body to: list-unsubscribe@securiteam.com
In order to subscribe to the mailing list, simply forward this email to: list-subscribe@securiteam.com

====================
====================

DISCLAIMER:
The information in this bulletin is provided "AS IS" without warranty of any kind.
In no event shall we be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages.

• Previous message: SecuriTeam: "[EXPL] Wu-FTPd Remote DoS (/bin/ls)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages [TOOL] Safe Run As - Keylogger Protection ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... This tool is created to protect administrative passwords against ... file and steal encryption key. ... In no event shall we be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages. ... (Securiteam) [TOOL] Gen - Random Password/Wordlist Generator ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... Gen is a small password/wordlist generator written in Perl. ... # Passwords number: 3 ... printf "Output file $passoutputfile created\n"; ... (Securiteam) [TOOL] Cisco Password Cracker ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... the passwords are no longer ... # Passwords can be up to eleven mixed-case characters. ... unsigned char *enc_pw; ... (Securiteam) [NT] ZipTorrent Local Information Disclosure ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... Lack of proper protection of the passwords used by ZipTorrent allows local ... ZipTorrent stores proxy server information and password in ... (Securiteam) [NEWS] Security Vulnerability in Xerox Document Centre (Directory Traversal) ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... A security vulnerability has been found in the Xerox Document Centre, ... vulnerability allows remote access to files, access to plaintext passwords ... Requesting: http://xerox_dc_470.example.com/ .. ... (Securiteam)