[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-Disclosure] SMC Router safe Login in plaintext

To: <bugtraq@xxxxxxxxxxxxxxxxx>, <full-disclosure@xxxxxxxxxxxxxxxx>, <vuln@xxxxxxxxxxx>
Subject: [Full-Disclosure] SMC Router safe Login in plaintext
From: "Florian Rock" <florianrock@xxxxxx>
Date: Wed, 3 Sep 2003 14:14:37 +0200

I found that the SMC Barricade SMC-7404BRB safe the Login for the Provider safe 
in plaintext!!!

If you go to PPPoE and look a the source code you found the password in 
plaintext.
Here a pic from the HTML site:

If you look at Source you can find the line:
<input type="password" name="p_passwd" size="25" maxlength="60" 
value="00000000"></font> 
The password is safe in plaintext!!! 00000000 = password in plaintext

Prev by Date: [Full-Disclosure] Scanning the PCs for RPC Vulnerability.
Next by Date: RE: [Full-Disclosure] Scanning the PCs for RPC Vulnerability
Previous by thread: [Full-Disclosure] Scanning the PCs for RPC Vulnerability.
Next by thread: RE: [Full-Disclosure] SMC Router safe Login in plaintext
Index(es):
- Date
- Thread