Vulnerability Description
NETGEAR (formerly Infrant) ReadyNAS RAIDiator before 4.00b2-p2-T1 beta creates a default SSH root password derived from the hardware serial number, which makes it easier for remote attackers to guess the password and obtain login access.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Netgear | Readynas Raidiator | 3.01c1-p1 |
References
- http://secunia.com/advisories/26442PatchVendor Advisory
- http://securityreason.com/securityalert/3017
- http://www.infrant.com/forum/viewtopic.php?t=12249
- http://www.infrant.com/forum/viewtopic.php?t=12313
- http://www.infrant.com/forum/viewtopic.php?t=3366&start=30
- http://www.osvdb.org/36357
- http://www.securityfocus.com/archive/1/476266/100/0/threaded
- http://www.securityfocus.com/bid/25290Patch
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36011
- http://secunia.com/advisories/26442PatchVendor Advisory
- http://securityreason.com/securityalert/3017
- http://www.infrant.com/forum/viewtopic.php?t=12249
- http://www.infrant.com/forum/viewtopic.php?t=12313
- http://www.infrant.com/forum/viewtopic.php?t=3366&start=30
- http://www.osvdb.org/36357
FAQ
What is CVE-2007-4361?
CVE-2007-4361 is a vulnerability with a CVSS score of 10.0 (HIGH). NETGEAR (formerly Infrant) ReadyNAS RAIDiator before 4.00b2-p2-T1 beta creates a default SSH root password derived from the hardware serial number, which makes it easier for remote attackers to guess ...
How severe is CVE-2007-4361?
CVE-2007-4361 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-4361?
Check the references section above for vendor advisories and patch information. Affected products include: Netgear Readynas Raidiator.