NetStructure 7180 Remote Backdoor Vulnerability
BID:1183
Info
NetStructure 7180 Remote Backdoor Vulnerability
| Bugtraq ID: | 1183 |
| Class: | Access Validation Error |
| CVE: |
CVE-2000-0384 |
| Remote: | Yes |
| Local: | Yes |
| Published: | May 08 2000 12:00AM |
| Updated: | Jul 11 2009 01:56AM |
| Credit: | This vulnerability was published to the Bugtraq mailing list by @Stake Inc. L0pht Research Labs on May 8, 2000 |
| Vulnerable: |
Intel Corporation NetStructure 7180 |
| Not Vulnerable: | |
Discussion
NetStructure 7180 Remote Backdoor Vulnerability
NetStructure (formerly known as Ipivot Commerce Accelerator) is a Multi-Site Traffic Director. This Internet equipment is designed for businesses with multiple Web site locations, routing traffic to the best available site from a single URL management. Certain revisions of this package have two undocumented supervisor passwords. These passwords are derived from is the ethernet address of the public interface which under default installs is available via a default passworded SNMP daemon.
These passwords can be utilized via the admin console locally (via a serial interface) or remotely if the machine has been deployed with a modem for remote accessor allows telnet access. It should be noted that configuration over telnet is preferred in the user documentation. With these passwords an intruder gains shell access to the underlying UNIX system and may sniff traffic among other things.
NetStructure (formerly known as Ipivot Commerce Accelerator) is a Multi-Site Traffic Director. This Internet equipment is designed for businesses with multiple Web site locations, routing traffic to the best available site from a single URL management. Certain revisions of this package have two undocumented supervisor passwords. These passwords are derived from is the ethernet address of the public interface which under default installs is available via a default passworded SNMP daemon.
These passwords can be utilized via the admin console locally (via a serial interface) or remotely if the machine has been deployed with a modem for remote accessor allows telnet access. It should be noted that configuration over telnet is preferred in the user documentation. With these passwords an intruder gains shell access to the underlying UNIX system and may sniff traffic among other things.
Exploit / POC
NetStructure 7180 Remote Backdoor Vulnerability
x
x
Solution / Fix
NetStructure 7180 Remote Backdoor Vulnerability
Solution:
Intel has provided a patch for this issue. Details on how to obtain this patch are available at:
http://216.188.41.136
Intel Corporation NetStructure 7180
Solution:
Intel has provided a patch for this issue. Details on how to obtain this patch are available at:
http://216.188.41.136
Intel Corporation NetStructure 7180
-
Intel 7140 (IB4000) / 7170 (IB7000) / 7180 (CD8000) Security Patch
This page provides access to the security patch for the 7140, 7170, and 7180 (both strong and weak encryption). It will work with software versions 2.2.1, 2.3.0, and 2.3.1 (as well as all variants of those versions).
http://216.188.41.136/
References
NetStructure 7180 Remote Backdoor Vulnerability
References:
References: