vendor:
HT2000W Satellite Modem
by:
Simon Greenblatt
8.1
CVSS
CRITICAL
Password Reset Vulnerability
200
CWE
Product Name: HT2000W Satellite Modem
Affected Version From: Arcadyan httpd 1.0
Affected Version To: Not specified
Patch Exists: NO
Related CWE: CVE-2021-20090
CPE: h:hughesnet:ht2000w_satellite_modem
Platforms Tested: Linux
2024
HughesNet HT2000W Satellite Modem Password Reset
The exploit allows an attacker to reset the administrator password for HughesNet HT2000W Satellite Modem by taking advantage of CVE-2021-20090, a path traversal vulnerability in the HTTP daemon. The exploit also exploits other vulnerabilities like improper use of httokens for authentication and leaking the MD5 hash of the password.
Mitigation:
Vendor should release a patch to fix the path traversal vulnerability and other related issues. Users should change the default passwords and use strong, unique passwords.