IP3 Networks NetAccess NA75 Default Administrator Credentials

2006-04-24T08:47:37
ID OSVDB:24996
Type osvdb
Reporter OSVDB
Modified 2006-04-24T08:47:37

Description

Vulnerability Description

By default, IP3 Networks NetAccess NA75 devices install with a default password. The 'admin' account has a password of 'admin' which is publicly known and documented. This allows attackers to trivially access the program or system.

Additionally, upon first login the administrator is not prompted to change the default password.

Short Description

By default, IP3 Networks NetAccess NA75 devices install with a default password. The 'admin' account has a password of 'admin' which is publicly known and documented. This allows attackers to trivially access the program or system.

Additionally, upon first login the administrator is not prompted to change the default password.

References:

Vendor URL: http://www.ip3.com/ Secunia Advisory ID:19818 Related OSVDB ID: 24997 Related OSVDB ID: 19836 Related OSVDB ID: 24995 Related OSVDB ID: 24998 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-04/0530.html FrSIRT Advisory: ADV-2006-1540 CVE-2006-2044 Bugtraq ID: 17698