Sign-up

ID

VAR-201210-0625


TITLE

P1 Modem Default Password Security Bypass Vulnerability

Trust: 1.5

sources: CNVD: CNVD-2012-5851 // BID: 55937 // CNNVD: CNNVD-201210-435

DESCRIPTION

P1 WiMAX modems are a home broadband router. P1 WiMAX modems enable port 80 to allow users to access the management interface from the web browser. Currently, the default username is \"admin\" and the password is \"admin123\" to log in to the device from the internet. The modem device from P1 is prone to a security-bypass vulnerability. Successful attacks can allow an attacker to gain access to the affected application using the default authentication credentials

Trust: 0.81

sources: CNVD: CNVD-2012-5851 // BID: 55937

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2012-5851

AFFECTED PRODUCTS

vendor:p1model:wimax modemsscope: - version: -

Trust: 0.6

sources: CNVD: CNVD-2012-5851

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201210-435

TYPE

Design Error

Trust: 0.3

sources: BID: 55937

EXTERNAL IDS

db:BIDid:55937

Trust: 1.5

db:CNVDid:CNVD-2012-5851

Trust: 0.6

db:CNNVDid:CNNVD-201210-435

Trust: 0.6

sources: CNVD: CNVD-2012-5851 // BID: 55937 // CNNVD: CNNVD-201210-435

REFERENCES

url:http://seclists.org/fulldisclosure/2012/oct/99

Trust: 0.6

url:http://www.securityfocus.com/bid/55937

Trust: 0.6

sources: CNVD: CNVD-2012-5851 // CNNVD: CNNVD-201210-435

CREDITS

Nursyafiq Mohamad

Trust: 0.9

sources: BID: 55937 // CNNVD: CNNVD-201210-435

SOURCES

db:CNVDid:CNVD-2012-5851
db:BIDid:55937
db:CNNVDid:CNNVD-201210-435

LAST UPDATE DATE

2022-05-17T01:46:37.656000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2012-5851date:2012-10-19T00:00:00
db:BIDid:55937date:2012-10-15T00:00:00
db:CNNVDid:CNNVD-201210-435date:2012-10-19T00:00:00

SOURCES RELEASE DATE

db:CNVDid:CNVD-2012-5851date:2012-10-19T00:00:00
db:BIDid:55937date:2012-10-15T00:00:00
db:CNNVDid:CNNVD-201210-435date:2012-10-19T00:00:00