CyberSec.Space Logo
Back to CVE Browser

CVE-2001-1594

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1180%
EPSS Percentile8.78th
PublishedAug 4, 2015
Last ModifiedMay 6, 2026

Vulnerability Description

GE Healthcare eNTEGRA P&R has a password of (1) entegra for the entegra user, (2) passme for the super user of the Polestar/Polestar-i Starlink 4 upgrade, (3) 0 for the entegra user of the Codonics printer FTP service, (4) eNTEGRA for the eNTEGRA P&R user account, (5) insite for the WinVNC Login, and possibly other accounts, which has unspecified impact and attack vectors. NOTE: it is not clear whether this password is default, hardcoded, or dependent on another system or product that requires a fixed value.

Affected Platforms (CPE)

πŸ“¦
Gehealthcare

Entegra P\&r

All versions

References & Advisories

πŸ”— http://apps.gehealthcare.com/servlet/ClientServlet/2263784.pdf?DOCCLASS=A&REQ=RAC&DIRECTION=2263784-100&FILENAME=2263784.pdf&FILEREV=5&DOCREV_ORG=5&SUBMIT=+ACCEPT+
πŸ”— http://www.forbes.com/sites/thomasbrewster/2015/07/10/vulnerable-breasts/
πŸ”— https://ics-cert.us-cert.gov/advisories/ICSMA-18-037-02
πŸ”— https://twitter.com/digitalbond/status/619250429751222277
πŸ”— http://apps.gehealthcare.com/servlet/ClientServlet/2263784.pdf?DOCCLASS=A&REQ=RAC&DIRECTION=2263784-100&FILENAME=2263784.pdf&FILEREV=5&DOCREV_ORG=5&SUBMIT=+ACCEPT+
πŸ”— http://www.forbes.com/sites/thomasbrewster/2015/07/10/vulnerable-breasts/
πŸ”— https://ics-cert.us-cert.gov/advisories/ICSMA-18-037-02
πŸ”— https://twitter.com/digitalbond/status/619250429751222277

Related Vulnerabilities

CVE-2001-003210.0

Format string vulnerability in ssldump possibly allows remote attackers to cause a denial of service and possibly gain root privil...

CVE-2001-043210.0

Buffer overflows in various CGI programs in the remote administration service for Trend Micro Interscan VirusWall 3.01 allow remot...

CVE-2001-002110.0

MailMan Webmail 3.0.25 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the alternate...

CVE-2001-046410.0

Buffer overflow in websync.exe in Cyberscheduler allows remote attackers to execute arbitrary commands via a long tzs (timezone) p...

CVE-2001-1594 Detail & Impact Analysis | CVSS 10.0 (CRITICAL) | Cyber-Sec.Space | Cyber-Sec.Space