CVE-2013-5755

config/.htpasswd in Yealink IP Phone SIP-T38G has a hardcoded password of (1) user (s7C9Cx.rLsWFA) for the user account, (2) admin (uoCbM.VEiKQto) for the admin account, and (3) var (jhl3iZAe./qXM) for the var account, which makes it easier for remote attackers to obtain access via unspecified vectors.
References
Configurations

Configuration 1 (hide)

cpe:2.3:h:yealink:sip-t38g:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2014-07-16 14:19

Updated : 2024-02-28 12:20


NVD link : CVE-2013-5755

Mitre link : CVE-2013-5755

CVE.ORG link : CVE-2013-5755


JSON object : View

Products Affected

yealink

  • sip-t38g
CWE
CWE-255

Credentials Management Errors