COVR 3902 1.01B0 Hardcoded Credentials

🗓️ 02 Sep 2020 00:00:00Reported by CSW Research LabType

packetstorm🔗 packetstormsecurity.com👁 261 Views

Telnet Hardcoded Credentials in COVR-3902 REVA Router Firmware v1.01B

Reporter	Title	Published	Views	Family All 9
0day.today	COVR 3902 1.01B0 Hardcoded Credentials Vulnerability	4 Sep 202000:00	–	zdt
BDU FSTEC	The vulnerability of D-Link COVR-2600R and COVR-3902 router microprogramming software, related to the use of pre-installed login credentials, allows attackers to enhance their privileges.	22 Sep 202000:00	–	bdu_fstec
Circl	CVE-2018-20432	14 Sep 202018:55	–	circl
CVE	CVE-2018-20432	14 Sep 202013:41	–	cve
Cvelist	CVE-2018-20432	14 Sep 202013:41	–	cvelist
NVD	CVE-2018-20432	14 Sep 202014:15	–	nvd
OSV	CVE-2018-20432	14 Sep 202014:15	–	osv
Prion	Hardcoded credentials	14 Sep 202014:15	–	prion
Positive Technologies	PT-2020-3947 · D Link · D-Link Covr-2600R +1	4 Sep 202000:00	–	ptsecurity

`*Title*: Telnet Hardcoded Credentials  
  
*Summary*: The latest versions of the firmware have hardcoded default  
credentials that can be exploited by an unauthenticated attacker to gain  
privileged access to the firmware and to extract sensitive data  
  
*Affected Firmware:* COVR-3902_REVA_ROUTER_FIRMWARE_v1.01B0  
  
*CVE:* CVE-2018-20432  
  
*Proof of Concept: *  
Step 1: “cat ./etc/init0.d/S80telnetd.sh” to get a username  
Step 2: “cat ./etc/config/image_sign” to get a password.  
  
Username: Alphanetworks  
Password: wrgac61_dlink.2015_dir883  
  
----------  
Cheers !!!  
Team CSW Research Lab <http://www.cybersecurityworks.com>  
  
  
`

02 Sep 2020 00:00Current

9.7High risk

Vulners AI Score9.7

EPSS0.03933