OpenELEC and derivatives utilize a hard-coded default root password, and enable SSH root access by default.
CWE-259: Use of Hard-coded Password
OpenELEC has a hard-coded root password. The root partition is by default read-only, preventing a user from changing the password once installed; furthermore, SSH access is enabled by default.
A remote attacker may gain root access to the device.
The CERT/CC is currently unaware of a full solution to this issue. Affected users may consider the following mitigations:
Thanks to Aidan Samuel for reporting this vulnerability.
This document was written by Garret Wassermann.
|Date First Published:||2016-02-02|
|Date Last Updated:||2016-02-02 16:20 UTC|