1 results (0.001 seconds)

CVSS: 10.0EPSS: 2%CPEs: 2EXPL: 2

RioRey RIOS 4.6.6 and 4.7.0 uses an undocumented, hard-coded username (dbadmin) and password (sq!us3r) for an SSH tunnel, which allows remote attackers to gain privileges via port 8022. RioRey RIOS v4.6.6 y v4.7.0 utiliza un nombre de usuario (dbadmin) y contraseña (sq!us3r) indocumentados, no modificables para un túnel SSH, que permite a atacantes remotos obtener privilegios a través del puerto 8022. • https://www.exploit-db.com/exploits/9858 http://osvdb.org/58858 http://packetstormsecurity.org/0910-exploits/riorey-passwd.txt http://secunia.com/advisories/36971 • CWE-255: Credentials Management Errors •