CVE-2013-7442

Name of the Vulnerable Software and Affected Versions GE Healthcare Centricity PACS Workstation versions 4.0 through 4.0.1

Description The issue concerns hardcoded passwords for the Administrator and IIS users. The passwords are CANal1 for the Administrator user and iis for the IIS user. This has unspecified impact and is related to TimbuktuPro, with unclear details on whether these passwords are default, hardcoded, or dependent on another system.

Recommendations For GE Healthcare Centricity PACS Workstation versions 4.0 through 4.0.1, change the default passwords for the Administrator and IIS users to strong, unique passwords to mitigate potential risks. As a temporary workaround, consider restricting access to the system until the passwords can be changed.