SOFTWARE VERSION: s2.0 VxWorks (for Hornet VoWifi, ARM946ES (LE) Factory Firmware) version 5.5.1. Kernel: WIND version 2.6. Made on Apr 5 2005, 14:49:39.
A. VULNERABILITY TITLE: UTStarcom F1000 Voip Wifi phone SNMP daemon has default public read credentials and the daemon cannot be disabled
VULNERABILITY DETAILS, IMPACT AND WORKAROUND: UTstarcom F1000 SNMP daemon default public credentials allows an attacker with access to the phone's SNMP daemon to read the phone's SNMP configuration. This can lead to sensitive information disclosure. In addition, the daemon's read/write credentials cannot be changed, nor can the daemon be disabled via the phone's physical interface (i.e. via keypad input). During testing, the SNMP daemon appeared consistently die when connecting via Snmpwalk, requiring rebooting the phone in order to restore SNMP service.
B. VULNERABILITY TITLE: UTstarcom F1000 Voip Wifi Phone telnet server has known default user/password credentials
VULNERABILITY DETAILS, IMPACT AND WORKAROUND: The phone's operating system is Wind River's Vxworks. Default credentials for this OS are publically known to be target/password.
By default, the telnet deamon is listening on the phone (TCP port 23) providing WIFI network access to the phone's OS. Attackers can telnet to the phone and gain access to the phone's Vxworks OS using the known default credentials.
Impact is full access to the Vxworks OS, including debugging, direct memory dumping/injection, read/write device, user and network configuration files, enable/disable/restart services, remote reboot. For a workaround, the default login/password can be changed.
C. VULNERABILITY TITLE: UTstarcom F1000 Voip Wifi Phone rlogin (TCP/513) unauthenticated access
VULNERABILITY DETAILS, IMPACT AND WORKAROUND: The phone's rlogin port TCP/513 is listening by default and requires no authentication. An attacker connecting to the phone via telnet/netcat is dropped into a shell without any login. The shell provides an attacker full access to the Vxworks OS, including debugging, direct memory dumping/injection, read/write device, user and network configuration files, enable/disable/restart services, remote reboot.
There appears to be no workaround as neither the service can be disabled, nor can authentication to rlogin be enabled.
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
All times are GMT - 5 Hours
Vonage Service Plans
Vonage VoIP Members
Members New Raniinody New Today 3 Yesterday 3 Total 64297 Who Is On Site Visitors 141 Members 0 Total 141
1Unlimited calling and other services for all residential plans are based on normal residential, personal, non-commercial use. A combination of factors is used to determine abnormal use, including but not limited to: the number of unique numbers called, calls forwarded, minutes used and other factors. Subject to our Reasonable Use Policy and Terms of Service.
2Shipping and activation fees waived with 1-year agreement. An Early Termination Fee (with periodic pro-rated reductions) applies if service is terminated before the end of the first 12 months. Additional restrictions may apply. See Terms of Service for details.
HIGH SPEED INTERNET REQUIRED. †VALID FOR NEW LINES ONLY. RATES EXCLUDE INTERNET SERVICE, SURCHARGES, FEES AND TAXES. DEVICE MAY BE REFURBISHED. If you subscribe to plans with monthly minutes allotments (for example, U.S. & Canada 300), all call minutes placed from both from your home and registered ExtensionsTM phones will count toward your monthly minutes allotment. ExtensionsTM calls made from mobiles use airtime and may incur surcharges, depending on your mobile plan. Alarms, TTY and other systems may not be compatible. Vonage 911 service operates differently than traditional 911. See www.vonage.com/911 for details.
Thinking of signing up for Vonage but have questions? Business and Residential customers can call Toll Free 24 hours a day at: 1-888-692-8074 No Vonage Promotional Codes or Coupon Codes are required at www.vonage.com.
The Vonage Forum provides the Vonage sign up Best Offer Promotion Deal as a means to offset
our cost. If you are considering signing up for Vonage and have found our Vonage
News, Customer Reviews, Forums & all other parts of this site useful, please
use our Vonage FREE Month sign up offer Deal Coupon.
Vonage VoIP Phone Service is redefining communications by offering consumers & small business VoIP Internet phones, an affordable alternative to traditional phone service.
The Vonage VoIP Forum Generated This Page In: 0.57 Seconds and 257 Pages In The Last 60 Seconds The Vonage VoIP Forum
Members
New 
New Today 3
Yesterday 3
Total 64297
Who Is On Site
Visitors 141
Members 0
Total 141
-0.03