Vulnerability CVE-2007-4361

Vulnerability Name:

CVE-2007-4361 (CCN-36011)

Assigned:

2007-08-13

Published:

2007-08-13

Updated:

2018-10-15

Summary:

NETGEAR (formerly Infrant) ReadyNAS RAIDiator before 4.00b2-p2-T1 beta creates a default SSH root password derived from the hardware serial number, which makes it easier for remote attackers to guess the password and obtain login access.

CVSS v3 Severity:

8.0 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): High Privileges Required (PR): Low User Interaction (UI): Required
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

CVSS v2 Severity:

10.0 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)
7.4 High (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

7.1 High (CCN CVSS v2 Vector: AV:N/AC:H/Au:S/C:C/I:C/A:C)
5.3 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:H/Au:S/C:C/I:C/A:C/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): High Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

Vulnerability Type:

CWE-Other

Vulnerability Consequences:

Bypass Security

References:

Source: CCN
Type: BugTraq Mailing List, Mon Aug 13 2007 - 07:52:26 CDT
Default Root Password in Infrant (now Netgear) ReadyNAS "RAIDiator"

Source: MITRE
Type: CNA
CVE-2007-4361

Source: CCN
Type: SA26442
Infrant ReadyNAS Devices SSH Default Root Password Weakness

Source: SECUNIA
Type: Patch, Vendor Advisory
26442

Source: SREASON
Type: UNKNOWN
3017

Source: CONFIRM
Type: UNKNOWN
http://www.infrant.com/forum/viewtopic.php?t=12249

Source: CCN
Type: ReadyNAS - Community Support Forum, Mon Aug 06, 2007 4:09 pm
Security Advisory: Vulnerability of root SSH access

Source: CONFIRM
Type: UNKNOWN
http://www.infrant.com/forum/viewtopic.php?t=12313

Source: CONFIRM
Type: UNKNOWN
http://www.infrant.com/forum/viewtopic.php?t=3366&start=30

Source: OSVDB
Type: UNKNOWN
36357

Source: CCN
Type: OSVDB ID: 36357
Infrant ReadyNAS Default Root Password Generation Weakness

Source: BUGTRAQ
Type: UNKNOWN
20070813 Default Root Password in Infrant (now Netgear) ReadyNAS "RAIDiator"

Source: BID
Type: Patch
25290

Source: CCN
Type: BID-25290
NETGEAR ReadyNAS RAIDiator Remote SSH Backdoor Vulnerability

Source: XF
Type: UNKNOWN
readynas-ssh-security-bypass(36011)

Source: XF
Type: UNKNOWN
readynas-ssh-security-bypass(36011)

Vulnerable Configuration:

Configuration 1:

cpe:/h:netgear:readynas_raidiator:3.01c1-p1:*:*:*:*:*:*:*

OR cpe:/h:netgear:readynas_raidiator:3.01c1-p6:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/h:netgear:readynas_raidiator:3.01c1-p1:*:*:*:*:*:*:*

OR cpe:/h:netgear:readynas_raidiator:3.01c1-p6:*:*:*:*:*:*:*

Denotes that component is vulnerable

BACK