SecurityTracker.com
Keep Track of the Latest Vulnerabilities
with SecurityTracker!
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 
Sign Up
Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary
Instant Alerts
Buy our Premium Vulnerability Notification Service to receive customized, instant alerts
Affiliates
Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!
Partners
Become a Partner and License Our Database or Notification Service
Report a Bug
Report a vulnerability that you have found to SecurityTracker
bugs
@
securitytracker.com





Category:   Device (Router/Bridge/Hub)  >   SURECOM Broadband Router Vendors:   SURECOM Technology Corp
SURECOM Broadband Router (EP-4501) Default Configuration Gives Remote Users Read/Write SNMP Access
SecurityTracker Alert ID:  1005623
SecurityTracker URL:  http://securitytracker.com/id/1005623
CVE Reference:   GENERIC-MAP-NOMATCH   (Links to External Site)
Date:  Nov 14 2002
Impact:   Disclosure of system information, Modification of system information, User access via network
Exploit Included:  Yes  
Version(s): Model EP-4501
Description:   A vulnerability was reported in the SURECOM Broadband Router model EP-4501. The default configuration includes default SNMP community names with read/write access. A remote user can change the device's configuration.

Arhont Ltd. issued an advisory warning that the default community name of 'public' can be used to gain read access to the SNMP port. A remote user can use the default community name of 'secret' to gain read/write access to the device to change the device configuration and restart the router.

According to the report, the SNMP server is enabled by default from both the LAN and WAN interfaces.

Other models may be affected (but were not tested).
Impact:   A remote user can gain read/write access to the device in the default configuration.
Solution:   No solution was available at the time of this entry.
Vendor URL:  www.surecom.com.tw/ (Links to External Site)
Cause:   Configuration error
Underlying OS:  

Message History:   None.

 Source Message Contents
Date:  13 Nov 2002 19:44:20 -0000
Subject:  Default SNMP community in Surecom Broadband Router




Arhont Ltd.     - Information Security

Arhont Advisory by:             Andrei Mikhailovsky
(www.arhont.com)
Advisory:                       Surecom Broadband Router 
Router Model Name:              EP-4501
Model Specific:                 Other models might be
vulnerable
Manufacturer site:              http://www.surecom.com.tw
Manufacturer contact:           surecom@surecom.com.tw
Contact Date:                   25/10/2002

DETAILS:

While performing a general penetration testing of a
network, we have found a security vulnerability in the
Surecom Broadband Router EP-4501.

The default router installation enables SNMP (Simple
Network Management Protocol) server with default
community names for read and read/write access.  

The community name: public 

Allows read access to the mentioned device, providing
enumeration and gathering of sensitive network
information.  

The community name: secret 

Allows read/write access to device, thus allowing
restart and change of the network settings of the
broadband router.  The SNMP server is enabled by
default from the LAN and WAN interfaces.

Impact: This vulnerability allows LAN and internet
malicious attackers to retrieve and change network
settings of the router.

Risk Factor: High

Possible Solutions:  Disable default SNMP
implementation, or change default community names.

According to the Arhont Ltd. policy, all of the found
vulnerabilities and security issues will be reported to
the manufacturer 7 days before releasing them to the
public domains (such as CERT and BUGTRAQ).

If you would like to get more information about this
issue, please do not hesitate to contact Arhont team.


Regards,

Andrei Mikhailovsky
Arhont Ltd.
http://www.arhont.com
GnuPG Keyserver: blackhole.pca.dfn.de
GnuPG Key:       0x178F548C


Go to the Top of This SecurityTracker Archive Page



Home   |    View Topics   |    Search   |    Contact Us

Copyright 2013, SecurityGlobal.net LLC