Please disgregard previous post, the signature got in the way of a paste In addition to //Gabriel Sandberg, Infosec gabriel.sandbergat_private's findings. Web-Based Management is enabled, by default, when you install the Compaq Server Management Agents for Windows NT.(CPQWMGMT.EXE) The web-enabled Compaq Server Management Agents allow you to view subsystem and status information from a web browser, either locally or remotely. Web-enabled Service Management Agents are availible in all 4.x versions of Insight Manager. Compaq HTTP Server Version 1.2.15 (Pre-Release) The only user accounts available in the Compaq Server Management Agent WEBEM release are listed below. http://111.111.111.111:2301/cpqlogin.htm account anonymous username anonymous password account user username user password public account operator username operator password operator account administrator username administrator password administrator http://111.111.111.111:2301/cpqlogin.htm?ChangePassword=yes is the url used to change the password. Unfortunately the password is the only information that can be changed and is stored in clear text in the following file. c:\compaq\wbem\cpqhmmd.acl ------------------------------------------------------------------------------------- Compaq-WBEM-AclFile, 1.1 anonymous anonymous 737EEEFA7617ED94EDD74E659B83035F login in progress... login in progress... 7A21DD9917C0C23907267FC07DBC7D12 administrator administrator D6022D9B3FCA717CCEED36E640160478 51B02137D6BF719FC62F4940DBE1F3E6 operator operator B5CE548356D1BEA5F1CFEE12FE9502C3 041D1015AEC9F60412C7F86E62D6672C user user EC286E733A8892ADFC895611D1557557 C865DE636CA398F8523EDBE5700D457A Once you have found one wbem enabled machine, using compaq's HTTP Auto-Discovery Device List http://111.111.111.111:2301/cpqdev.htm It is trivial to locate other machines.
This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 14:47:21 PDT