CVE-2010-0557

IBM Cognos Express - Credentials Management

Title source: rule

Description

IBM Cognos Express 9.0 allows attackers to obtain unspecified access to the Tomcat Manager component, and cause a denial of service, by leveraging hardcoded credentials.

Exploits (3)

metasploit WORKING POC EXCELLENT
rubypocjava
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/tomcat_mgr_upload.rb
metasploit WORKING POC EXCELLENT
by jduck · rubypocjava
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/tomcat_mgr_deploy.rb
exploitdb WORKING POC
rubyremotemultiple
https://www.exploit-db.com/exploits/16317

References (5)

Scores

EPSS 0.7940
EPSS Percentile 99.1%

Details

CWE
CWE-255
Status published
Products (1)
ibm/cognos_express 9.0
Published Feb 05, 2010
Tracked Since Feb 18, 2026