This host is running Sitecom WLM-3500 Router and is prone to authentication bypass vulnerability.

Successful exploitation will let the remote attacker to access the web interface of the affected devices using two distinct hard-coded users. Impact Level: Application

Upgrade to Sitecom WLM-3500, firmware versions 1.07 or later, For updates refer to http://www.sitecom.com/

Sitecom WLM-3500 routers contain an undocumented access backdoor that can be abused to bypass existing authentication mechanisms. These hard-coded accounts are persistently stored inside the device firmware image. Despite these users cannot access all the pages of the web interface, they can still access page '/romfile.cfg', the (clear-text) configuration file of the device that contains, among the other things, also the password for the 'admin' user thus, escalating to administrative privileges is trivial.

Sitecom WLM-3500, firmware versions < 1.07

• http://comments.gmane.org/gmane.comp.security.bugtraq/51700
• http://www.securityfocus.com/archive/1/526372

---

Updated on 2017-03-28