Bugtraq mailing list archives
Re: aDSL routers
From: derek () USFCA EDU (Derek Vadala)
Date: Wed, 14 Apr 1999 11:40:10 -0700
On Tue, 13 Apr 1999, David Brumley wrote:
Welp, aDSL is here. And at least one manufacturer, flowpoint, sets no admin password. It's in the documentation, so I assume the company already knows about this vulnerability:) System managers who have aDSL access often overlook this, so I thought I'd point it out. A quick fix: disable telnet access to all of your aDSL router IP's. Better fix: set an admin password. Version tested: FlowPoint/2000 ADSL Router FlowPoint-2000 BOOT/POST V4.0.2 (18-Mar-98 12:00) Software version v1.4.5 built Tue Aug 11 23:20:20 PDT 1998
Newer versions set password to "admin" by default. Since these routers are sold through resellers (ISPs, etc..), they are not always identical when the hit an end-user. Some resellers might change default passwords, some may not. In any case, this was discussed here last August, which ironically is the period your build comes from. Changes have been made since then, including implementation of a telnet password which must be entered before getting the prompt and using the admin password (enable for IOS folks). Unfortunately I don't know if the telnet password is set by default since I went through an upgrade and not an out-of-box config. The main problem I've had in dealing with FlowPoint security issues, of which there are many, is the lack of information on their web site and the nearly impossible task of getting a hold of their engineers. The software releases and utilties can be found at ftp://ftp.systemv.com/pub/flopoint I had to spend many hours tracking down a person for this info and I'm not sure why they don't have a link on their home page. Don't expect too much documentation on the ftp server, but at least you can grab a newer revision of the software and settle some of these issues. Dropping telnet access to the FP routers is probably a good idea regardless, though it's not always an option. +++ath Derek Vadala, derek () usfca edu, http://www.cynicism.com/~derek
Current thread:
- Re: ipop3d (x2) / pine (x2) / ..., (continued)
- Re: ipop3d (x2) / pine (x2) / ... GvS (Apr 11)
- Re: ipop3d (x2) / pine (x2) / ... Thomas Roessler (Apr 12)
- [support_feedback () us-support external hp com: Security Bulletins Patrick Oonk (Apr 13)
- Patrol security bugs fcosta (Apr 09)
- Re: ipop3d (x2) / pine (x2) / Linux kernel (x2) / Midnight M.C.Mar (Apr 09)
- New Novell Remote.NLM Password Decryption Algorithm with Exploit dreamer () RELIA NET (Apr 09)
- Novell Pandora Hack Jeremy M. Guthrie (Apr 12)
- Re: Novell Pandora Hack Simple Nomad (Apr 13)
- Re: Novell Pandora Hack Iain P.C. Moffat (Apr 13)
- aDSL routers David Brumley (Apr 13)
- Re: aDSL routers Derek Vadala (Apr 14)
- aDSL routers Brad Zimmerman (Apr 14)
- Re: aDSL routers Truman Boyes (Apr 14)
- New Novell Remote.NLM Password Decryption Algorithm with Exploit dreamer () RELIA NET (Apr 09)