Info

Disclosure

May 03, 2011

Discovery

Unknown

Dates

Exploit

May 03, 2011

Solution

Unknown

Description

Safety Vision RouteRecorder 4C contains a flaw related to the device's telnet server. This issue is triggered by the telnet server not requiring a password to login, which will allow a remote unauthenticated attacker to access the device.

Classification

Location: Remote / Network Access
Attack Type: Authentication Management
Impact: Loss of Integrity
Solution: Solution Unknown
Exploit: Exploit Public
Disclosure: Uncoordinated Disclosure

Solution

OSVDB is not aware of a solution for this vulnerability.

Products

Safety Vision, LLC.

RouteRecorder 4C

Unspecified

References

Related OSVDB ID: 83746 83747
Vendor URL: http://utility.com/company
http://www.safetyvision.com/
Other Advisory URL: http://www.digitalmunition.com/OwningCopCar.pdf
Generic Informational URL: http://www.safetyvision.com/attachments/contentmanagers/2168/RouteRecorder4C.pdf
News Article: http://www.theregister.co.uk/2011/05/03/cop_car_hacking/

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/83748