CVE-2016-10305

Trango Apex <= 2.1.1, ApexLynx < 2.0, ApexOrion < 2.0, ApexPlus <= 3.2.0, Giga <= 2.6.1, GigaLynx < 2.0, GigaOrion < 2.0, GigaPlus <= 3.2.3, GigaPro <= 1.4.1, StrataLink < 3.0, and StrataPro devices have a built-in, hidden root account, with a default password that was once stored in cleartext within a software update package on a Trango FTP server. This account is accessible via SSH and/or TELNET, and grants access to the underlying embedded UNIX OS on the device, allowing full control over it.

CVSS v3 9.8 CRITICAL
CVSS v2.0 10.0 HIGH

9.8^/10

CVSS v3 : CRITICAL

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

10.0^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 10.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://blog.iancaling.com/post/153011925478	Exploit Third Party Advisory
http://blog.iancaling.com/post/153011925478	Exploit Third Party Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:gotrango:apex_plus_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:gotrango:apex_plus:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:gotrango:apex_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:gotrango:apex:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:gotrango:apex_lynx_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:gotrango:apex_lynx:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:o:gotrango:apex_orion_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:gotrango:apex_orion:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND

cpe:2.3:o:gotrango:giga_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:gotrango:giga:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND

cpe:2.3:o:gotrango:giga_lynx_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:gotrango:giga_lynx:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND

cpe:2.3:o:gotrango:giga_orion_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:gotrango:giga_orion:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND

cpe:2.3:o:gotrango:giga_plus_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:gotrango:giga_plus:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND

cpe:2.3:o:gotrango:giga_pro_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:gotrango:giga_pro:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND

cpe:2.3:o:gotrango:stratalink_pro_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:gotrango:stratalink_pro:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND

cpe:2.3:o:gotrango:stratalink_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:gotrango:stratalink:-:*:*:*:*:*:*:*

History

21 Nov 2024, 02:43

Type	Values Removed	Values Added
References	~~() http://blog.iancaling.com/post/153011925478 - Exploit, Third Party Advisory~~	() http://blog.iancaling.com/post/153011925478 - Exploit, Third Party Advisory

Information

Published : 2017-03-30 07:59

Updated : 2024-11-21 02:43

NVD link : CVE-2016-10305

Mitre link : CVE-2016-10305

CVE.ORG link : CVE-2016-10305

JSON object : View

Products Affected

gotrango

giga_firmware
giga_plus_firmware
giga_pro_firmware
apex_plus
apex_lynx
giga_orion_firmware
apex_orion
stratalink
giga_pro
giga_plus
apex_orion_firmware
apex_lynx_firmware
stratalink_pro
giga_lynx
apex_plus_firmware
giga_orion
giga
stratalink_firmware
giga_lynx_firmware
apex
apex_firmware
stratalink_pro_firmware

CWE

CWE-798

Use of Hard-coded Credentials

9.8 /10