Vulnonym.com

CVE-2006-5038 - Appropriative Interval

Description

The FiWin SS28S WiFi VoIP SIP/Skype Phone firmware version 01_02_07 has a hard-coded username and password which allows remote attackers to gain administrative access via telnet.

Reference

http://archives.neohapsis.com/archives/fulldisclosure/2006-09/0391.html http://www.osnews.com/story.php/15923/Review-FiWin-SS28S-WiFi-VoIP-SIPSkype-Phone/ http://www.securityfocus.com/bid/20154 http://secunia.com/advisories/22041 https://exchange.xforce.ibmcloud.com/vulnerabilities/29114