Intellian Satellite TV antennas t-Series and v-Series, firmware version 1.07, uses default credentials.
CWE-255: Credentials Management - CVE-2016-6551
Intellian Satellite TV antennas t-Series and v-Series, firmware version 1.07, uses non-random default credentials of: ftp/ftp or intellian:12345678. A remote network attacker can gain elevated access to a vulnerable device.
A remote attacker can take control of a device using default credentials.
The CERT/CC is currently unaware of a practical solution to this problem.
Restrict access and use strong passwords
Thanks to Ory Segal and Ezra Caltum for reporting this vulnerability.
This document was written by Trent Novelly.
|Date First Published:||2016-10-20|
|Date Last Updated:||2016-10-20 18:14 UTC|