Vulnerability Details CVE-2000-0772
The installation of Tumbleweed Messaging Management System (MMS) 4.6 and earlier (formerly Worldtalk Worldsecure) creates a default account "sa" with no password.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 64.5%
CVSS Severity
CVSS v2 Score 7.5
References
- http://archives.neohapsis.com/archives/bugtraq/2000-08/0098.html
- http://thompson.tumbleweed.com/NewKB/bulletin/UPFiles/sa-official.htm
- http://www.securityfocus.com/bid/1562
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5072
- http://archives.neohapsis.com/archives/bugtraq/2000-08/0098.html
- http://thompson.tumbleweed.com/NewKB/bulletin/UPFiles/sa-official.htm
- http://www.securityfocus.com/bid/1562
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5072
Products affected by CVE-2000-0772
-
cpe:2.3:a:tumbleweed:messaging_management_system:4.3
-
cpe:2.3:a:tumbleweed:messaging_management_system:4.5
-
cpe:2.3:a:tumbleweed:messaging_management_system:4.6