PT-2009-5969 · Riorey · Riorey Rios
Publicado
2009-10-16
·
Atualizado
2009-10-19
·
CVE-2009-3710
CVSS v2.0
10
Alta
| Vetor | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
RioRey RIOS versions 4.6.6 and 4.7.0
Description
The issue allows remote attackers to gain privileges due to the use of an undocumented, hard-coded
username (dbadmin) and password (sq!us3r) for an SSH tunnel. This can be exploited via port 8022.Recommendations
For RioRey RIOS version 4.6.6, change the hard-coded
username and password to secure credentials.
For RioRey RIOS version 4.7.0, change the hard-coded username and password to secure credentials.Exploit
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Riorey Rios