ID
VAR-201308-0494
TITLE
Sitecom N300/N600 Undocumented Telnet Service Vulnerability
Trust: 0.6
DESCRIPTION
The Sitecom WLM-3500 and WLM-5500 devices have vulnerabilities that allow the Telnet service to be opened by accessing the \"http://<target-ip>/cgi-bin/telnetControl.cgi\" URL, which is accessible via the WAN interface and allows remote access. The attacker accesses and controls the device through the telnet service. The Sitecom WLM-3500 and WLM-5500 are wireless router products developed by Sitecom. The Sitecom WLM-3500 and WLM-5500 devices generate WPA2 ciphertext and WEB administrator user passwords based on the MAC address of the wireless interface card. Attackers in the Wi-Fi network range can calculate the default wireless password and access device. Multiple Sitecom products are prone to multiple authentication-bypass vulnerabilities. Attackers can exploit these issues to gain unauthorized access to the device and perform unauthorized actions. This can lead to a complete compromise of the devices. The following products are vulnerable: Sitecom WLM-3500v2001 firmware 1.07 Sitecom WLM-5500v1001 firmware 1.15
Trust: 1.35
IOT TAXONOMY
| category: | ['Network device'] | sub_category: | - | Trust: 1.2 |
AFFECTED PRODUCTS
| vendor: | sitecom | model: | wlm-3500 | scope: | eq | version: | v20011.07 | Trust: 1.2 |
| vendor: | sitecom | model: | wlm-5500 | scope: | eq | version: | v10011.15 | Trust: 1.2 |
| vendor: | sitecom | model: | wlm-5501v1001 | scope: | eq | version: | 1.15 | Trust: 0.3 |
| vendor: | sitecom | model: | wlm-3500v2001 | scope: | eq | version: | 1.07 | Trust: 0.3 |
| vendor: | sitecom | model: | wlm-5501v1001 | scope: | ne | version: | 2.01 | Trust: 0.3 |
| vendor: | sitecom | model: | wlm-3500v2001 | scope: | ne | version: | 1.08 | Trust: 0.3 |
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
THREAT TYPE
network
Trust: 0.3
TYPE
Design Error
Trust: 0.3
PATCH
| title: | Sitecom N300/N600 undocumented Telnet service vulnerability patch | url: | https://www.cnvd.org.cn/patchinfo/show/39157 | Trust: 0.6 |
| title: | Sitecom N300/N600 WPA2/Patch for Managing Password Generation Algorithm Vulnerabilities | url: | https://www.cnvd.org.cn/patchinfo/show/39156 | Trust: 0.6 |
EXTERNAL IDS
| db: | BID | id: | 61829 | Trust: 1.5 |
| db: | CNVD | id: | CNVD-2013-12607 | Trust: 0.6 |
| db: | CNVD | id: | CNVD-2013-12606 | Trust: 0.6 |
REFERENCES
| url: | http://www.securityfocus.com/archive/1/528093 | Trust: 1.2 |
| url: | http://blog.emaze.net/2013/08/multiple-vulnerabilities-on-sitecom.html | Trust: 1.2 |
| url: | http://seclists.org/bugtraq/2013/aug/130 | Trust: 0.3 |
| url: | http://www.sitecom.com | Trust: 0.3 |
CREDITS
Roberto Paleari and Alessandro Di Pinto
Trust: 0.3
SOURCES
| db: | CNVD | id: | CNVD-2013-12607 |
| db: | CNVD | id: | CNVD-2013-12606 |
| db: | BID | id: | 61829 |
LAST UPDATE DATE
2022-05-17T02:01:13.917000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2013-12607 | date: | 2013-08-28T00:00:00 |
| db: | CNVD | id: | CNVD-2013-12606 | date: | 2013-08-28T00:00:00 |
| db: | BID | id: | 61829 | date: | 2013-08-19T00:00:00 |
SOURCES RELEASE DATE
| db: | CNVD | id: | CNVD-2013-12607 | date: | 2013-08-28T00:00:00 |
| db: | CNVD | id: | CNVD-2013-12606 | date: | 2013-08-28T00:00:00 |
| db: | BID | id: | 61829 | date: | 2013-08-19T00:00:00 |