PT-2014-3213 · Cru · Cru Ditto Forensic Fieldstation

Martin Wundram

Published

2014-01-07

Updated

2014-02-25

CVE-2013-6884

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions CRU Ditto Forensic FieldStation versions prior to 2013Oct15a

Description The issue concerns a default username and password for the ditto account in the write-blocker, allowing remote attackers to gain privileges.

Recommendations For versions prior to 2013Oct15a, change the default ditto username and password to secure credentials as soon as possible to prevent unauthorized access.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-255

Related Identifiers

CVE-2013-6884

Affected Products

Cru Ditto Forensic Fieldstation

PT-2014-3213 · Cru · Cru Ditto Forensic Fieldstation

CVE-2013-6884

Weakness Enumeration

Related Identifiers

Affected Products

References · 8