By default, Sinapsi eSolar Light Photovoltaic System Monitor installs with a default password. The program authenticates users who provide the password of 36e44c9b64 (and 1-2 other unspecified passwords), which is publicly known and documented, regardless of the username they provide. This allows attackers to trivially access the program or system and gain privileged access. Users are not able to change this password.
Remote / Network Access
Loss of Integrity
No Vendor Response
OSVDB is not aware of a solution for this vulnerability.