CVE-2006-2738

The open source version of Open-Xchange 0.8.2 and earlier uses a static default username and password with a valid login shell in the initfile for the ldap-server, which allows remote attackers to access any server where the default has not been changed.

Date published : 2006-06-01

http://www.securityfocus.com/bid/18115

http://www.securityfocus.com/archive/1/435198/100/0/threaded