CVE-2016-10305

Name of the Vulnerable Software and Affected Versions Trango Apex versions 2.1.1 and earlier ApexLynx version 2.0 and earlier ApexOrion version 2.0 and earlier ApexPlus versions 3.2.0 and earlier Giga versions 2.6.1 and earlier GigaLynx version 2.0 and earlier GigaOrion version 2.0 and earlier GigaPlus versions 3.2.3 and earlier GigaPro versions 1.4.1 and earlier StrataLink version 3.0 and earlier StrataPro version not specified

Description The issue concerns a built-in, hidden root account with a default password that was stored in cleartext within a software update package on a Trango FTP server. This account is accessible via SSH and/or TELNET, granting access to the underlying embedded UNIX OS on the device and allowing full control over it. The vulnerability can be exploited by a remote attacker to gain administrator access to the embedded operating system using SSH or Telnet connection.

Recommendations For Trango Apex versions 2.1.1 and earlier, consider disabling the root account access via SSH and/or TELNET until a patch is available. For ApexLynx version 2.0 and earlier, restrict access to the embedded UNIX OS to minimize the risk of exploitation. For ApexOrion version 2.0 and earlier, avoid using the default password for the root account in the affected devices. For ApexPlus versions 3.2.0 and earlier, consider changing the default password for the root account as a temporary workaround. For Giga versions 2.6.1 and earlier, disable the root account access via SSH and/or TELNET to prevent exploitation. For GigaLynx version 2.0 and earlier, restrict access to the embedded operating system. For GigaOrion version 2.0 and earlier, avoid using the default password for the root account. For GigaPlus versions 3.2.3 and earlier, consider changing the default password for the root account. For GigaPro versions 1.4.1 and earlier, disable the root account access via SSH and/or TELNET. For StrataLink version 3.0 and earlier, restrict access to the embedded UNIX OS. For StrataPro, at the moment, there is no information about a newer version that contains a fix for this vulnerability.