PT-2015-3329 · D Link · D-Link Dvg-N5402Sp
Karn Ganeshen
·
Published
2015-09-01
·
Updated
2023-04-26
·
CVE-2015-7246
CVSS v2.0
10
High
| Vector | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
D-Link DVG-N5402SP with firmware W1000CN-00
D-Link DVG-N5402SP with firmware W1000CN-03
D-Link DVG-N5402SP with firmware W2000EN-00
Description
The issue is related to the use of default passwords for the root and tw accounts in the D-Link DVG-N5402SP router. The default password for the root account is
root and for the tw account is tw. This makes it easier for remote attackers to obtain administrative access.Recommendations
For D-Link DVG-N5402SP with firmware W1000CN-00, change the default passwords for the root and tw accounts to secure ones.
For D-Link DVG-N5402SP with firmware W1000CN-03, change the default passwords for the root and tw accounts to secure ones.
For D-Link DVG-N5402SP with firmware W2000EN-00, change the default passwords for the root and tw accounts to secure ones.
Exploit
Fix
Using Hardcoded Credentials
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
D-Link Dvg-N5402Sp