Test ID:	1.3.6.1.4.1.25623.1.0.804477
Category:	Default Accounts
Title:	Datum Systems Satellite Modem Multiple Vulnerabilities
Summary:	Datum Systems Satellite Modem is prone to multiple vulnerabilities.
Description:	Summary: Datum Systems Satellite Modem is prone to multiple vulnerabilities. Vulnerability Insight: - The FTP service being enabled by default without authentication mechanisms. This may allow a remote attacker to gain access to potentially sensitive information. - The admin user account has a password of 'admin', which is publicly known and documented. This allows remote attackers to trivially gain privileged access to the SnIP operating system. Vulnerability Impact: Successful exploitation will allow remote attackers to trivially gain privileged access to the device, execute arbitrary commands and gain access to arbitrary files. Affected Software/OS: Datum Systems PSM-4500 and PSM-500 series satellite modem. Solution: No known solution was made available for at least one year since the disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2014-2951 CERT/CC vulnerability note: VU#917348 http://www.kb.cert.org/vuls/id/917348 Common Vulnerability Exposure (CVE) ID: CVE-2014-2950
Copyright	Copyright (C) 2014 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.