ID
VAR-200210-0315
TITLE
D-Link DSL-500 has a default telnet password vulnerability
Trust: 0.6
DESCRIPTION
The DSL-500 is an ADSL broadband router developed by D-Link. The DSL-500 includes a default telnet password that can be used by remote attackers to access control devices. The DSL-500 includes a default telnet password of 'private', which allows an attacker to gain unauthorized access to the device for a denial of service attack or other malicious activity. This could result in unauthorized access, denial of service, or other problems
Trust: 0.81
IOT TAXONOMY
| category: | ['IoT', 'Network device'] | sub_category: | - | Trust: 0.6 |
AFFECTED PRODUCTS
| vendor: | no | model: | - | scope: | - | version: | - | Trust: 0.6 |
| vendor: | d link | model: | dsl-500 | scope: | eq | version: | 1.14 | Trust: 0.3 |
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||
|
|
THREAT TYPE
network
Trust: 0.3
TYPE
Design Error
Trust: 0.3
PATCH
| title: | D-Link DSL-500 has a patch for the default telnet password vulnerability | url: | https://www.cnvd.org.cn/patchinfo/show/36209 | Trust: 0.6 |
EXTERNAL IDS
| db: | BID | id: | 6039 | Trust: 0.9 |
| db: | CNVD | id: | CNVD-2002-3916 | Trust: 0.6 |
REFERENCES
| url: | http://marc.theaimsgroup.com/?l=bugtraq&m=103547671710032&w=2 | Trust: 0.6 |
| url: | http://www.dlink.it/prodotti/prod/dsl-500/view.html | Trust: 0.3 |
CREDITS
Vulnerability discovery credited to Linux <linux@ariu.it>.
Trust: 0.3
SOURCES
| db: | CNVD | id: | CNVD-2002-3916 |
| db: | BID | id: | 6039 |
LAST UPDATE DATE
2022-05-17T01:57:28.577000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2002-3916 | date: | 2013-09-03T00:00:00 |
| db: | BID | id: | 6039 | date: | 2002-10-24T00:00:00 |
SOURCES RELEASE DATE
| db: | CNVD | id: | CNVD-2002-3916 | date: | 2002-10-24T00:00:00 |
| db: | BID | id: | 6039 | date: | 2002-10-24T00:00:00 |