CVE-2014-2264 Information

Description

The OpenVPN module in Synology DiskStation Manager (DSM) 4.3-3810 update 1 has a hardcoded root password of synopass which makes it easier for remote attackers to obtain access via a VPN session.

Reference

http://forum.synology.com/enu/viewtopic.php?f=173&t=77644 http://www.kb.cert.org/vuls/id/534284