Default Password (zebra) for Zebra

This script is Copyright (C) 2005-2013 Tenable Network Security, Inc.


Synopsis :

The remote router is protected with a default password.

Description :

The remote host is running Zebra, a routing daemon.

The remote Zebra installation uses as its password the default,
'zebra'. An attacker may log in using this password and control the
routing tables of the remote host.

See also :

http://archives.neohapsis.com/archives/bugtraq/2004-08/0181.html
http://archives.neohapsis.com/archives/bugtraq/2004-08/0201.html

Solution :

Edit 'zebra.conf' and set a strong password.

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 10.0
(CVSS2#E:H/RL:U/RC:ND)
Public Exploit Available : true

Family: Firewalls

Nessus Plugin ID: 16205 ()

Bugtraq ID: 10935

CVE ID: