CVE-2012-4362

Name of the Vulnerable Software and Affected Versions HP SAN/iQ versions prior to 9.5

Description The issue concerns a hardcoded password in hydra.exe for the global$agent account. This hardcoded password is L0CAlu53R, allowing remote attackers to gain access to a management service. The attack vector involves sending a login request to TCP port 13838.

Recommendations For HP SAN/iQ versions prior to 9.5, change the hardcoded password L0CAlu53R for the global$agent account to prevent unauthorized access. As a temporary workaround, consider restricting access to TCP port 13838 until the issue is resolved.