.. / CVE-2005-3344

Exploit for Horde Groupware Unauthenticated Admin Access (CVE-2005-3344)

Description:

Horde Groupware contains an administrative account with a blank password, which allows remote attackers to gain access.

Nuclei Template

View the template here CVE-2005-3344.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2005/CVE-2005-3344.yaml

References:

https://exchange.xforce.ibmcloud.com/vulnerabilities/24576
http://www.debian.org/security/2005/dsa-884
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3344
https://nvd.nist.gov/vuln/detail/CVE-2005-3344
http://www.networkscanning.com/Horde-Default-Admin-Password-Vulnerability-VSS_20171.html