Title: GarrettCom Magnum MNS-6K Management Software Hardcoded Admin Password
Aug 31, 2012
May 18, 2012
By default, GarrettCom Magnum MNS-6K Management Software installs with a default, hardcoded password that may allow a normal user account to authenticate with admin privileges. This allows attackers to trivially access the program or system and gain privileged access.
Upgrade to version 4.1.15 or higher or 14.1.15 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds. ICS has also implied that versions 4.4.0 and 14.4.0 may address this vulnerability.