CVE-2011-0885

EUVD-2011-0897
A certain Comcast Business Gateway configuration of the SMC SMCD3G-CCR with firmware before 1.4.0.49.2 has a default password of D0nt4g3tme for the mso account, which makes it easier for remote attackers to obtain administrative access via the (1) web interface or (2) TELNET interface.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
10 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 95%
Affected Products (NVD)
VendorProductVersion
smc_networkssmcd3g-ccr
*
smc_networkssmcd3g-ccr_firmware
𝑥
≤ 1.4.0.49
smc_networkssmcd3g-ccr_firmware
1.4.0.42
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://seclists.org/bugtraq/2011/Feb/36
http://secunia.com/advisories/43199
http://securityreason.com/securityalert/8066
http://www.exploit-db.com/exploits/16123/
http://www.securityfocus.com/archive/1/516205/100/0/threaded
http://www.securityfocus.com/bid/46215
https://exchange.xforce.ibmcloud.com/vulnerabilities/65184
https://www.trustwave.com/spiderlabs/advisories/TWSL2011-002.txt
http://seclists.org/bugtraq/2011/Feb/36
http://secunia.com/advisories/43199
http://securityreason.com/securityalert/8066
http://www.exploit-db.com/exploits/16123/
http://www.securityfocus.com/archive/1/516205/100/0/threaded
http://www.securityfocus.com/bid/46215
https://exchange.xforce.ibmcloud.com/vulnerabilities/65184
https://www.trustwave.com/spiderlabs/advisories/TWSL2011-002.txt