P1 WiMAX Modem Default Credentials Unauthorized Access Vulnerability Network Vulnerability

Summary

This host has P1 WiMAX Modem and is prone default credentials unauthorized access vulnerability.

Impact

Successful exploitation will allow remote attackers to login with default credentials and gain access to modem. Impact Level: Application

Solution

No solution or patch was made available for at least one year since disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one.

Insight

The flaw is due to the default configuration of the modem allows anyone to access port 80 from the internet and modem is using the same default login with 'admin' as the username and 'admin123' as the password.

Affected

P1 WiMAX Modem

References

http://pastebin.com/pkuNfSJF
http://seclists.org/fulldisclosure/2012/Oct/99

Updated on 2015-03-25

Severity

Classification

CVSS	Base Score: 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

b2ePMS Multiple SQL Injection Vulnerabilities
ASP-Dev XM Event Diary Multiple Vulnerabilities
AWCM CMS Multiple Remote File Include Vulnerabilities
AIOCP 'cp_html2xhtmlbasic.php' Remote File Inclusion Vulnerability
appRain CMF SQL Injection And Cross Site Scripting Vulnerabilities

Take action and discover your vulnerabilities