Trusted Design

• 重大度: Unknown
• 公開日: 2014-02-04
• 更新日: 2024-08-06

概要

The TELNET service on the ZTE ZXV10 W300 router 2.1.0 has a hardcoded password ending with airocon for the admin account, which allows remote attackers to obtain administrative access by leveraging knowledge of the MAC address characters present at the beginning of the password.

このCVEに関連するMITRE ATT&CKテクニック

• T1110.001 - Password Guessing
• T1492 - Stored Data Manipulation
• T1003.002 - Security Account Manager
• T1583.002 - DNS Server
• T1121 - Regsvcs/Regasm
• T1484.002 - Trust Modification
• T1070.002 - Clear Linux or Mac System Logs
• T1598.003 - Spearphishing Link
• T1583.005 - Botnet
• T1071 - Application Layer Protocol
• T1608.001 - Upload Malware
• T1558 - Steal or Forge Kerberos Tickets
• T1555 - Credentials from Password Stores
• T1070.008 - Clear Mailbox Data
• T1050 - New Service
• T1518.002 - Backup Software Discovery
• T1525 - Implant Internal Image
• T1145 - Private Keys
• T1155 - AppleScript
• T1027.016 - Junk Code Insertion
• T1598.004 - Spearphishing Voice
• T1016 - System Network Configuration Discovery
• T1546.008 - Accessibility Features
• T1090 - Proxy
• T1036.002 - Right-to-Left Override
• T1583.003 - Virtual Private Server
• T1083 - File and Directory Discovery
• T1649 - Steal or Forge Authentication Certificates
• T1051 - Shared Webroot
• T1218.005 - Mshta
• T1606.001 - Web Cookies
• T1496.004 - Cloud Service Hijacking
• T1679 - Selective Exclusion
• T1219.003 - Remote Access Hardware
• T1562.001 - Disable or Modify Tools
• T1059.011 - Lua
• T1110.004 - Credential Stuffing
• T1187 - Forced Authentication
• T1486 - Data Encrypted for Impact
• T1128 - Netsh Helper DLL
• T1137.004 - Outlook Home Page
• T1493 - Transmitted Data Manipulation
• T1500 - Compile After Delivery
• T1213.003 - Code Repositories
• T1565.002 - Transmitted Data Manipulation
• T1498 - Network Denial of Service
• T1550.002 - Pass the Hash
• T1055.008 - Ptrace System Calls
• T1653 - Power Settings
• T1596.005 - Scan Databases
• T1204.001 - Malicious Link
• T1086 - PowerShell

このCVEが関連しているPulses

• DSL routers contain hard-coded "XXXXairocon" credentials

CVEの関係性グラフ

---

← CVE一覧に戻る