Apache Axis2, as used in dswsbobje.war in SAP BusinessObjects Enterprise XI 3.2, CA ARCserve D2D r15, and other products, has a default password of axis2 for the admin account, which makes it easier for remote malicious users to execute arbitrary code by uploading a crafted web service.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apache axis2 1.3 |
||
apache axis2 1.4 |
||
apache axis2 1.5.2 |
||
apache axis2 1.6 |
||
apache axis2 1.5 |
||
apache axis2 1.4.1 |
||
apache axis2 1.5.1 |
||
sap businessobjects 3.2 |