CyberSec.Space Logo
Back to CVE Browser

CVE-2001-0372

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1410%
EPSS Percentile5.90th
PublishedJun 18, 2001
Last ModifiedApr 16, 2026

Vulnerability Description

Akopia Interchange 4.5.3 through 4.6.3 installs demo stores with a default group account :backup with no password, which allows a remote attacker to gain administrative access via the demo stores (1) barry, (2) basic, or (3) construct.

Affected Platforms (CPE)

πŸ“¦
Akopia

Akopia Interchange

<= 4.6.3
πŸ“¦
Akopia

Akopia Interchange

= 4.5.3

References & Advisories

πŸ”— http://archives.neohapsis.com/archives/bugtraq/2001-03/0337.html
πŸ”— http://lists.akopia.com/pipermail/interchange-announce/2001/000009.html
πŸ”— http://www.securityfocus.com/bid/2499
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/6273
πŸ”— http://archives.neohapsis.com/archives/bugtraq/2001-03/0337.html
πŸ”— http://lists.akopia.com/pipermail/interchange-announce/2001/000009.html
πŸ”— http://www.securityfocus.com/bid/2499
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/6273

Related Vulnerabilities

CVE-2001-002110.0

MailMan Webmail 3.0.25 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the alternate...

CVE-2001-003210.0

Format string vulnerability in ssldump possibly allows remote attackers to cause a denial of service and possibly gain root privil...

CVE-2001-067910.0

A buffer overflow in InterScan VirusWall 3.23 and 3.3 allows a remote attacker to execute arbitrary code by sending a long HELO co...

CVE-2001-002210.0

simplestguest.cgi CGI program by Leif Wright allows remote attackers to execute arbitrary commands via shell metacharacters in the...