CVE-2009-3710 Information

Description

RioRey RIOS 4.6.6 and 4.7.0 uses an undocumented hard-coded username (dbadmin) and password (sq!us3r) for an SSH tunnel which allows remote attackers to gain privileges via port 8022.

Reference

http://osvdb.org/58858 http://packetstormsecurity.org/0910-exploits/riorey-passwd.txt http://secunia.com/advisories/36971