VYPR
Unrated severityNVD Advisory· Published Jun 1, 2006· Updated Jun 16, 2026

CVE-2006-2738

CVE-2006-2738

Description

The open source version of Open-Xchange 0.8.2 and earlier uses a static default username and password with a valid login shell in the initfile for the ldap-server, which allows remote attackers to access any server where the default has not been changed.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • cpe:2.3:a:open-xchange:open-xchange:*:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:open-xchange:open-xchange:*:*:*:*:*:*:*:*range: <=0.8.2
    • cpe:2.3:a:open-xchange:open-xchange:0.8.1.6:*:*:*:*:*:*:*
    • (no CPE)range: <=0.8.2

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.