The /root/anaconda-ks.cfg installation configuration file in International Datacasting Corporation (IDC) SFX Series(SFX2100) SuperFlex Satellite Receiver insecurely stores the hardcoded root password hash. The password itself is highly insecure and susceptible to offline dictionary attacks using the rockyou.txt wordlist. Because direct root SSH login is disabled, an attacker must first obtain low-privileged access to the system (e.g., via other vulnerabilities) to be able to log in as the root user. The password is hardcoded and so allows for an actor with local access on effected versions to escalate to root
CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:N/SC:H/SI:H/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:XDatacast Sfx2100
HWDatacastwszystkie wersjeDatacast Sfx2100 Firmware
OSDatacastwszystkie wersje
Related vulnerabilities
IDC SFX2100: błędne uprawnienia katalogu umożliwiają privilege escalation
Hardcoded hasło w urządzeniu IDC SFX2100 – nieautoryzowany dostęp SSH
Command Injection w narzędziu Traceroute interfejsu IDC SFX2100
Command injection w narzędziu diagnostycznym Ping urządzenia IDC SFX2100
RCE jako root przez SNMP w odbiorniku IDC SFX Series SuperFlex