Search...

webramp-M3-entre.txt

1999-08-17T00:00:00

ID PACKETSTORM:12391
Type packetstorm
Reporter Packet Storm
Modified 1999-08-17T00:00:00

Description

                                            `Date: Thu, 21 Jan 1999 15:20:56 -0500  
From: James Egelhof &lt;jegelhof@CLOUD9.NET&gt;  
To: BUGTRAQ@netspace.org  
Subject: Re: WebRamp M3 remote network access bug  

On Thu, 21 Jan 1999, John Stanley wrote:  

&gt; If you are using this box, and you see this bug, and you have NOT changed  
&gt; the admin password from the default, DO SO IMMEDIATELY.  

You obviously can't do anything interesting with the CLI unless you have  
the password. However, the WebRamp (at least Entre, the ISDN version,  
which is what I use) includes a default username of "wradmin" and password  
of "trancell." This gives you full access to the device, either through  
the CLI or the Windows management software (which seems to use the CLI).  

You can use the CLI to set up a "Remote Office" connection profile. If  
you do this, you can make the WebRamp call up a remote site and attach it  
to your network. Or, you could change the ISP phone number to something  
else, and thereby get the WebRamp to divulge your password. Other uses  
for this access are pretty obvious.  

The real security issue is the presence of the default password, the  
documentation's lack of insistence on changing it, and the  
difficulty/impossibility of restricting access to the CLI.  

Our experiences with Ramp Network's tech support, on other issues, have  
been less than ideal.  

-james  

---  

James Egelhof jegelhof@cloud9.net  
Cloud 9 Consulting, Inc. +1 (914) 696-4000  
White Plains, New York http://www.cloud9.net  

`

JSON Vulners Source

Initial Source

{"id": "PACKETSTORM:12391", "type": "packetstorm", "bulletinFamily": "exploit", "title": "webramp-M3-entre.txt", "description": "", "published": "1999-08-17T00:00:00", "modified": "1999-08-17T00:00:00", "cvss": {"vector": "NONE", "score": 0.0}, "href": "https://packetstormsecurity.com/files/12391/webramp-M3-entre.txt.html", "reporter": "Packet Storm", "references": [], "cvelist": [], "lastseen": "2016-11-03T10:22:20", "viewCount": 4, "enchantments": {"score": {"value": -0.3, "vector": "NONE", "modified": "2016-11-03T10:22:20", "rev": 2}, "dependencies": {"references": [], "modified": "2016-11-03T10:22:20", "rev": 2}, "vulnersScore": -0.3}, "sourceHref": "https://packetstormsecurity.com/files/download/12391/webramp-M3-entre.txt", "sourceData": "`Date: Thu, 21 Jan 1999 15:20:56 -0500 \nFrom: James Egelhof <jegelhof@CLOUD9.NET> \nTo: BUGTRAQ@netspace.org \nSubject: Re: WebRamp M3 remote network access bug \n \nOn Thu, 21 Jan 1999, John Stanley wrote: \n \n> If you are using this box, and you see this bug, and you have NOT changed \n> the admin password from the default, DO SO IMMEDIATELY. \n \nYou obviously can't do anything interesting with the CLI unless you have \nthe password. However, the WebRamp (at least Entre, the ISDN version, \nwhich is what I use) includes a default username of \"wradmin\" and password \nof \"trancell.\" This gives you full access to the device, either through \nthe CLI or the Windows management software (which seems to use the CLI). \n \nYou can use the CLI to set up a \"Remote Office\" connection profile. If \nyou do this, you can make the WebRamp call up a remote site and attach it \nto your network. Or, you could change the ISP phone number to something \nelse, and thereby get the WebRamp to divulge your password. Other uses \nfor this access are pretty obvious. \n \nThe real security issue is the presence of the default password, the \ndocumentation's lack of insistence on changing it, and the \ndifficulty/impossibility of restricting access to the CLI. \n \nOur experiences with Ramp Network's tech support, on other issues, have \nbeen less than ideal. \n \n-james \n \n--- \n \nJames Egelhof jegelhof@cloud9.net \nCloud 9 Consulting, Inc. +1 (914) 696-4000 \nWhite Plains, New York http://www.cloud9.net \n \n`\n"}