ID
VAR-201501-0782
TITLE
Netcore (Netis) router 53413/UDP backdoor service vulnerability
Trust: 0.6
DESCRIPTION
Netcore is a manufacturer of network communications in Shenzhen Leike. Its main products involve wireless routers, wireless network cards, network cards, hubs, switches, broadband routers, layer two, three and four switches, and optical terminals. A large number of Netcore/Netis router products have backdoor vulnerabilities that can be easily exploited in their implementation. Attackers can use hard-coded backdoor passwords to access the backdoor services, execute arbitrary commands, upload and download files, and obtain WEB login passwords. Complete control of affected products. After that, the backdoor listens on port 53413/UDP. It can be exploited from the WAN side of the affected device, that is, an attacker can exploit this vulnerability from anywhere on the Internet.
Trust: 0.6
IOT TAXONOMY
| category: | ['Network device'] | sub_category: | - | Trust: 0.6 |
AFFECTED PRODUCTS
| vendor: | netcore | model: | routers | scope: | - | version: | - | Trust: 0.6 |
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||
|
|
EXTERNAL IDS
| db: | CNVD | id: | CNVD-2015-00013 | Trust: 0.6 |
REFERENCES
| url: | http://blog.trendmicro.com/trendlabs-security-intelligence/netis-routers-leave-wide-open-backdoor/ | Trust: 0.6 |
SOURCES
| db: | CNVD | id: | CNVD-2015-00013 |
LAST UPDATE DATE
2022-05-04T08:43:39.336000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2015-00013 | date: | 2020-03-10T00:00:00 |
SOURCES RELEASE DATE
| db: | CNVD | id: | CNVD-2015-00013 | date: | 2015-01-04T00:00:00 |