Hardcoded Accounts in AVer Information EH6108H+ Devices Allow Remote Root Access

Hardcoded Accounts in AVer Information EH6108H+ Devices Allow Remote Root Access

CVE-2016-6535 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

AVer Information EH6108H+ devices with firmware X9.03.24.00.07l have hardcoded accounts, which allows remote attackers to obtain root access by leveraging knowledge of the credentials and establishing a TELNET session.

Learn more about our Web Application Penetration Testing UK.