{ "CVE_data_meta" : { "ASSIGNER" : "cve@mitre.org", "ID" : "CVE-2002-1637", "STATE" : "PUBLIC" }, "affects" : { "vendor" : { "vendor_data" : [ { "product" : { "product_data" : [ { "product_name" : "n/a", "version" : { "version_data" : [ { "version_value" : "n/a" } ] } } ] }, "vendor_name" : "n/a" } ] } }, "data_format" : "MITRE", "data_type" : "CVE", "data_version" : "4.0", "description" : { "description_data" : [ { "lang" : "eng", "value" : "Multiple components in Oracle 9i Application Server (9iAS) are installed with over 160 default usernames and passwords, including (1) SYS, (2) SYSTEM, (3) AQJAVA, (4) OWA, (5) IMAGEUSER, (6) USER1, (7) USER2, (8) PLSQL, (9) DEMO, (10) FINANCE, and many others, which allows attackers to gain privileges." } ] }, "problemtype" : { "problemtype_data" : [ { "description" : [ { "lang" : "eng", "value" : "n/a" } ] } ] }, "references" : { "reference_data" : [ { "name" : "http://www.nextgenss.com/papers/hpoas.pdf", "refsource" : "MISC", "url" : "http://www.nextgenss.com/papers/hpoas.pdf" }, { "name" : "VU#712723", "refsource" : "CERT-VN", "url" : "http://www.kb.cert.org/vuls/id/712723" }, { "name" : "default-oracle-system(968)", "refsource" : "XF", "url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/968" }, { "name" : "default-oracle-sys(969)", "refsource" : "XF", "url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/969" }, { "name" : "default-oracle-scott(970)", "refsource" : "XF", "url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/970" }, { "name" : "default-oracle-apps(971)", "refsource" : "XF", "url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/971" }, { "name" : "default-oracle-applsys(972)", "refsource" : "XF", "url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/972" } ] } }