CVE-2012-1803

Currently unrated

Key Information:

Vendor: Siemens
Status: Ruggedcom Rugged Operating System
Vendor: CVE Published:; 28 April 2012

Summary

RuggedCom Rugged Operating System (ROS) 3.10.x and earlier has a factory account with a password derived from the MAC Address field in the banner, which makes it easier for remote attackers to obtain access by performing a calculation on this address value, and then establishing a (1) TELNET, (2) remote shell (aka rsh), or (3) serial-console session.

References

http://www.wired.com/threatlevel/2012/04/ruggedcom-backdoor/

x_refsource_MISC

http://www.exploit-db.com/exploits/18779

exploitx_refsource_EXPLOIT-DB

https://exchange.xforce.ibmcloud.com/vulnerabilities/75120

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Apr 28, 2012
Vulnerability Reserved
Mar 21, 2012