Esesix: >> Thintune Xm Security Vulnerabilities
radmin in eSeSIX Thintune thin clients running firmware 2.4.38 and earlier starts a process port 25072 that can be accessed with a default "jstwo" password, which allows remote attackers to gain access.
CVSS Score
10.0
EPSS Score
0.032
Published
2004-12-31
eSeSIX Thintune thin clients running firmware 2.4.38 and earlier store sensitive usernames and passwords in cleartext in configuration files for the keeper library, which allows attackers to gain access.
CVSS Score
4.6
EPSS Score
0.001
Published
2004-12-31
eSeSIX Thintune thin clients running firmware 2.4.38 and earlier allow local users to gain privileges by pressing CTRL-SHIFT-ALT-DEL and entering the "maertsJ" password, which is hard-coded into lshell.
CVSS Score
4.6
EPSS Score
0.001
Published
2004-12-31
The Phoenix browser in eSeSIX Thintune thin clients running firmware 2.4.38 and earlier allows local users to read arbitrary files via a file:/// URL.
CVSS Score
5.0
EPSS Score
0.005
Published
2004-07-24