Green Packet DX-350 uses default credentials
CWE-255: Credentials Management - CVE-2016-6552
Green Packet DX-350 uses non-random default credentials of: root:wimax. A remote network attacker can gain privileged access to a vulnerable device.
A remote attacker can take complete control of a device using default admin credentials.
The CERT/CC is currently unaware of a practical solution to this problem.
Restrict access and use strong passwords
Thanks to Ory Segal and Ezra Caltum for reporting this vulnerability.
This document was written by Trent Novelly.
|Date First Published:||2016-10-20|
|Date Last Updated:||2016-10-20 18:15 UTC|