This host is running Datum Systems Satellite Modem and is prone to multiple vulnerabilities.

Successful exploitation will allow remote attackers to trivially gain privileged access to the device, execute arbitrary commands and gain access to arbitrary files. Impact Level: System/Application

No solution or patch is available as of 30th January, 2015. Information regarding this issue will be updated once the solution details are available. For updates refer to http://www.datumsystems.com/products

- The FTP service being enabled by default without authentication mechanisms. This may allow a remote attacker to gain access to potentially sensitive information. - The admin user account has a password of 'admin', which is publicly known and documented. This allows remote attackers to trivially gain privileged access to the SnIP operating system.

Datum Systems PSM-4500 and PSM-500 series satellite modem

Send a crafted default credential via HTTP GET request and check whether it is able to login or not.

• http://www.kb.cert.org/vuls/id/917348
• http://www.osvdb.org/109011
• http://xforce.iss.net/xforce/xfdb/94483

---

Updated on 2017-03-28