CVE-2005-3344
published 2005-11-16CVE-2005-3344: The default installation of Horde 3.0.4 contains an administrative account with a blank password, which allows remote attackers to gain access.
PriorityP356critical10CVSS 2.0
AVNACLAuNCCICAC
EXPLOIT
EPSS
7.99%
94.0th percentile
The default installation of Horde 3.0.4 contains an administrative account with a blank password, which allows remote attackers to gain access.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| horde | horde | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Nuclei
Horde Groupware Unauthenticated Admin Access
nuclei·CVSS 10.0
CVE-2005-3344 [CRITICAL] Horde Groupware Unauthenticated Admin Access
Horde Groupware Unauthenticated Admin Access
Horde Groupware contains an administrative account with a blank password, which allows remote attackers to gain access.
Template:
id: CVE-2005-3344
info:
name: Horde Groupware Unauthenticated Admin Access
author: pikpikcu
severity: critical
description: Horde Groupware contains an administrative account with a blank password, which allows remote attackers to gain access.
impact: |
An attacker can gain unauthorized access to sensitive administrative functions and potentially compromise the entire system.
remediation: |
Apply the latest security patches or upgrade to a patched version of Horde Groupware to fix the vulnerability.
reference:
- https://nvd.nist.gov/vuln/detail/CVE-2005-3344
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-200
No writeups or analysis indexed.
http://www.debian.org/security/2005/dsa-884http://www.networkscanning.com/Horde-Default-Admin-Password-Vulnerability-VSS_20171.htmlhttp://www.osvdb.org/24117http://www.securityfocus.com/bid/15337/https://exchange.xforce.ibmcloud.com/vulnerabilities/24576http://www.debian.org/security/2005/dsa-884http://www.networkscanning.com/Horde-Default-Admin-Password-Vulnerability-VSS_20171.htmlhttp://www.osvdb.org/24117http://www.securityfocus.com/bid/15337/https://exchange.xforce.ibmcloud.com/vulnerabilities/24576
2005-11-16
Published