漏洞类别:Windows漏洞等级: 
漏洞信息
Default Password is enabled in the registry.
This check has been merged with QID 90006 "Enabled Auto Admin Logon".
This entry is used for older 2006 scan results, please note that an Asset Search query will generate an "QID does not exist" error.
漏洞危害
This registry entry enables unauthorized remote users to log on to the server using the default username, by providing the default password.
解决方案
We recommend removing the default password entry. To do so, locate the following registry key, and then remove the 'DefaultPassword' entry:
Software\Microsoft\Windows NT\CurrentVersion\WinLogon
0day
文章评论