Bugtraq mailing list archives

Re: 3Com switches - undocumented access level.)

From: jonny () COE UFRJ BR (Joao Carlos Mendes Luis)
Date: Sun, 10 May 1998 16:59:56 -0300


#define quoting(Riku Meskanen)
//   Q: Right, but how about SuperStack II Switch 1000, does it has
//      undocumented access level?
//
//   A: Yes, try username "monitor", with password "monitor".

Hey !  This is very well documented !

Users "monitor", "manager" and "security" are factory pre-existent,
with default passwords equal to the account name.   It's user's
obligation to change all 3 passwords if he wants security.

AFAIK, this is valid for every SuperStack management module/equipment.

//   Q: Is the SuperStack II Switch 3000 also affected, as it's basically
//      same the same family line.
//
//   A: Yes, try same username/password pair monitor/monitor.
//      The tested system has version information.

See above.

                                        Jonny

--
Joao Carlos Mendes Luis                 jonny () gta ufrj br
+55 21 290-4698 ( Job )                 jonny () coppe ufrj br
M.Sc. Student                           Electrical Engineering
Universidade Federal do Rio de Janeiro

Current thread:

Re: 3Com switches - undocumented access level., (continued)
- - - Re: 3Com switches - undocumented access level. Eric Monti (May 07)
    - Re: 3Com switches - undocumented access level. Sasha Egan (May 08)
    - NSCA HTTPD (for Windows) bug. Renos (May 08)
    - 4 Advisories for Digital Unix: ftp, advs, rpc.statd, ftpd Helmut Springer (May 08)
    - xterm exploit [TOG issue] Andrea Arcangeli (May 08)
  - BSDI 3.1/Squid Default Owner Jonathan A. Zdziarski (May 07)
- Re: 3Com switches - undocumented access level. Toh Chang Ying (May 08)
- Re: 3Com switches - undocumented access level. Aleph One (May 08)
  - Re: 3Com switches - undocumented access level.) Riku Meskanen (May 09)
    - Re: 3Com switches - undocumented access level.) Riku Meskanen (May 09)
    - Re: 3Com switches - undocumented access level.) Joao Carlos Mendes Luis (May 10)
- Re: 3Com switches - undocumented access level. der Mouse (May 08)
  - Re: 3Com switches - undocumented access level. Sasha Egan (May 08)
  - Re: 3Com switches - undocumented access level. Sasha Egan (May 08)
    - Re: 3Com switches - undocumented access level. Michael Mittelstadt (May 10)
    - Re: 3Com switches - undocumented access level. NetSurfer (May 11)
  - Bay Networks Security Hole Marty Rigaletto (May 09)
    - coke.c snupe (May 09)
    - MICO: security problem: Privileges of micod for everybody! Dominique Unruh (May 10)
    - Re: MICO: security problem: Privileges of micod for everybody! Miguel de Icaza (May 10)
    - Re: Bay Networks Security Hole Jason Ackley (May 10)