FiWin SS28S WiFi VoIP SIP/Skype Phone Default Administrator Password Vulnerability

The FiWin SS28S WiFi VoIP SIP/Skype phone is prone to an authentication-bypass vulnerability because the administrator password is hard-coded into the device.

An attacker can exploit this issue to bypass authentication and gain access to the device's administrative section. This could aid in further attacks.


 

Privacy Statement
Copyright 2010, SecurityFocus