Aastra OpenCom 1000 Default Login Network Vulnerability

Summary

The remote Aastra OpenCom 1000 is prone to a default account authentication bypass vulnerability. This issue may be exploited by a remote attacker to gain access to sensitive information or modify system configuration without requiring authentication. It was possible to login as user 'Admin' with password 'Admin'.

Solution

Change the password.

Severity

Classification

CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Kyocera Printer Default Account Authentication Bypass Vulnerability
HTTP Brute Force Logins with default Credentials
Default password (ibmdb2) for db2as
IPmux-2L TDM Pseudowire Access Gateway Default Credentials
F5 Networks BIG-IP Webinterface Default Credentials

Take action and discover your vulnerabilities