Published: 08/02/2011 Updated: 09/10/2018

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

VMScore: 1000

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

A certain Comcast Business Gateway configuration of the SMC SMCD3G-CCR with firmware prior to 1.4.0.49.2 has a default password of D0nt4g3tme for the mso account, which makes it easier for remote malicious users to obtain administrative access via the (1) web interface or (2) TELNET interface.

Vulnerable Product	Search on Vulmon	Subscribe to Product
smc_networks smcd3g-ccr
smc_networks smcd3g-ccr_firmware 1.4.0.42
smc_networks smcd3g-ccr_firmware

Trustwave's SpiderLabs Security Advisory TWSL2011-002: Vulnerabilities in Comcast DOCSIS 30 Business Gateways (D3G-CCR) wwwtrustwavecom/spiderlabs/advisories/TWSL2011-002txt Published: 2011-02-04 Version: 10 Vendor: Comcast (comcastcom) Product: Comcast DOCSIS 30 Business Gateway - D3G-CCR Version affected: Versions prior ...

Comcast DOCSIS 30 Business Gateways suffer from static credential, multiple cross site request forgery, and weak session management vulnerabilities Versions prior to 140492 are affected ...

CWE-255 https://www.trustwave.com/spiderlabs/advisories/TWSL2011-002.txt http://www.exploit-db.com/exploits/16123/http://seclists.org/bugtraq/2011/Feb/36 http://www.securityfocus.com/bid/46215 http://secunia.com/advisories/43199 http://securityreason.com/securityalert/8066 https://exchange.xforce.ibmcloud.com/vulnerabilities/65184 http://www.securityfocus.com/archive/1/516205/100/0/threaded https://nvd.nist.gov https://www.exploit-db.com/exploits/16123/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2011-0885

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect