Release date:
Updated on:
Affected Systems:
Seagate Technology LLC Seagate BlackArmor
Description:
--------------------------------------------------------------------------------
Seagate BlackArmor is a network attached storage device.
Seagate BlackArmor has the static administrator password reset vulnerability. Because the device does not restrict access to d41d8cd98f00b204e9800998ecf8427e. php, remote unauthenticated attackers can use this vulnerability to reset the administrator password by directly accessing files.
<* Source: Jason Ellison
Link: http://www.kb.cert.org/vuls/id/515283
Http://secunia.com/advisories/49282/
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
Seagate Technology LLC
----------------------
Currently, the vendor does not provide patches or upgrade programs. We recommend that users who use the software follow the vendor's homepage to obtain the latest version:
Http://www.seagate.com/www/en-us/products/