https://cxsecurity.com/issue/WLB-2005100013
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200510-085

PlanetTechnologyCorpFGSW2402RSswitch是一款24口交换机PlanetTechnologyCorpFGSW2402RSswitchwithfirmware1.2带有默认密码，使得可物理访问设备的串行端口的攻击者可以获得特权。

Hello all,

Today i discovered a pseudo backdoor [thru a default password] while trying to
reset the password on a Planet Technology Corp FGSW2402RS switch.

Allthough i dont consider this to be a real problem since the only access seems
to be thru the serial port, i would like to share this with the community since
it isnt documented *anywhere* and Planet Technology Corp doesnt even reply to
emails asking for support on their products.

So...we start with a common ASCII analisys of the firmware [revision 1.2]:
root@leonardo-root ~/planet# strings FGSW-2402RS_ISP_1.2.txt
...
admin
[^_^]
ISPMODE
...
root@leonardo-root ~/planet#

Admin is the obvious login and ISPMODE is the password used for uploading a new
firmware to the equipment.

If we connect to the equipment and send admin as the login and "[^_^]" as the
password we get the same login prompt again (as if the password had failed) and
the password has now been reset to "".

Best regards,
+-------------------------
| Lus Miguel Silva
| Security Consultant
| Centro de Informtica Correia Arajo
| Faculdade de Engenharia da
| Universidade do Porto

来源:BUGTRAQ
名称:20051006PlanetTechnologyCorpFGSW2402RSswitchdefaultpassword/
链接:http://marc.theaimsgroup.com/?l=bugtraq&m;=112861552020302&w;=2
来源:BID
名称:15014
链接:http://www.securityfocus.com/bid/15014
来源:SREASON
名称:53
链接:http://securityreason.com/securityalert/53