| VID |
22400 |
| Severity |
40 |
| Port |
8019 |
| Protocol |
TCP |
| Class |
WWW |
| Detailed Description |
The remote administration console of Adobe Document Server is protected with the default account. The Adobe Document Server is a secure solution for dynamically assembling PDF files from a wide variety of data sources, including XML. The installation of the remote Adobe Document Server uses the default username and password to control access to its administrative console. The default password for the user "admin" (that is already placed there for you in the initial run) is "adobe". A remote attacker with knowledge of this account could connect to an affected application using the Web interface to gain unauthorized access and make unauthorized changes to the application's configuration settings.
* Platforms Affected:
Adobe Document Server Any version
Microsoft Windows Any version |
| Recommendation |
Set up the default password to a value that is difficult to guess immediately via the administration interface. |
| Related URL |
(CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
