Vulnerabilities > CVE-2007-4361 - Remote SSH Backdoor vulnerability in Netgear Readynas Raidiator 3.01C1P1/3.01C1P6
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
NETGEAR (formerly Infrant) ReadyNAS RAIDiator before 4.00b2-p2-T1 beta creates a default SSH root password derived from the hardware serial number, which makes it easier for remote attackers to guess the password and obtain login access.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Hardware | 2 |
References
- http://secunia.com/advisories/26442
- http://securityreason.com/securityalert/3017
- http://www.infrant.com/forum/viewtopic.php?t=12249
- http://www.infrant.com/forum/viewtopic.php?t=12313
- http://www.infrant.com/forum/viewtopic.php?t=3366&start=30
- http://www.osvdb.org/36357
- http://www.securityfocus.com/archive/1/476266/100/0/threaded
- http://www.securityfocus.com/bid/25290
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36011