Grand MA 300 Multiple Security Weaknesses
BID:69390
CVE-2014-5380 | CVE-2014-5381 |Info
Grand MA 300 Multiple Security Weaknesses
| Bugtraq ID: | 69390 |
| Class: | Design Error |
| CVE: |
CVE-2014-5380 CVE-2014-5381 |
| Remote: | Yes |
| Local: | No |
| Published: | Aug 26 2014 12:00AM |
| Updated: | Aug 26 2014 12:00AM |
| Credit: | LSE Leading Security Experts GmbH Eric Sesterhenn |
| Vulnerable: | |
| Not Vulnerable: | |
Discussion
Grand MA 300 Multiple Security Weaknesses
Grand MA 300 is prone to multiple security weaknesses.
Attackers can exploit these issues to disclose the access pin by sniffing network traffic or perform brute-force attacks on pin to gain unauthorized access. This may aid in other attacks.
Grand MA 300 running firmware version 6.60 is vulnerable.
Grand MA 300 is prone to multiple security weaknesses.
Attackers can exploit these issues to disclose the access pin by sniffing network traffic or perform brute-force attacks on pin to gain unauthorized access. This may aid in other attacks.
Grand MA 300 running firmware version 6.60 is vulnerable.
Exploit / POC
Grand MA 300 Multiple Security Weaknesses
Attackers can use readily available tools to exploit these issues.
The following proof-of-concept is available:
Attackers can use readily available tools to exploit these issues.
The following proof-of-concept is available:
Solution / Fix
Grand MA 300 Multiple Security Weaknesses
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
Grand MA 300 Multiple Security Weaknesses
References:
References: