PT-2017-17016 · Wepresent · Wepresent Wipg-1500

Quentin Olagne

Published

2017-03-06

Updated

2017-09-01

CVE-2017-6351

CVSS v2.0

9.3

High

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions WePresent WiPG-1500 version 1.0.3.7

Description The issue concerns a hardcoded username and password for a manufacturer account. When the device is set to DEBUG mode, an attacker can use the telnet protocol to connect to the device and log in with the hardcoded abarco account credentials. This account and the DEBUG feature are not documented, and the use of telnetd on port tcp/5885 is also undisclosed.

Recommendations For WePresent WiPG-1500 version 1.0.3.7, as a temporary workaround, consider disabling the DEBUG mode to prevent unauthorized access until a patch is available. Restrict access to port tcp/5885 to minimize the risk of exploitation. Avoid using the hardcoded abarco account credentials in the affected device configuration until the issue is resolved.

Exploit

Fix

Using Hardcoded Credentials

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-798

Related Identifiers

CVE-2017-6351

Affected Products

Wepresent Wipg-1500

PT-2017-17016 · Wepresent · Wepresent Wipg-1500

CVE-2017-6351

Weakness Enumeration

Related Identifiers

Affected Products

References · 5