| VID |
29111 |
| Severity |
40 |
| Port |
80 |
| Protocol |
TCP |
| Class |
WWW |
| Detailed Description |
The Allied Telesyn Router/Switch HTTP service uses the default user and password, 'manager/friend'. Allied Telesyn Routers and Switches are shipped with a default account login name and password enabled by default. The default password for the user "manager" (that is already placed there for you in the initial run) is "friend". A remote attacker with knowledge of this account could connect to an affected device using the Web interface to gain unauthorized access and make unauthorized changes to the device's configuration settings.
* Platforms Affected:
Allied Telesyn Router/Switch Any version |
| Recommendation |
Set up the default password to a value that is difficult to guess immediately. |
| Related URL |
CVE-1999-0508 (CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
