Multiple Switch Vendors '__super' Account Backdoor

High Nessus Plugin ID 49217


It is possible to log on the remote network switch with a default password.


Nessus was able to log into the remote host as the '__super' user and a password based on the switch's MAC address. This is likely a built-in account that cannot be disabled and whose password cannot be changed.

A remote attacker with knowledge of this switch's MAC address could exploit this by logging in and gaining complete control of the device.


There is no known solution at this time. Restrict access to this device.

See Also

Plugin Details

Severity: High

ID: 49217

File Name: accton_super_user_backdoor.nasl

Version: $Revision: 1.16 $

Type: remote

Published: 2010/09/14

Modified: 2017/12/19

Dependencies: 33276, 10551, 10267, 17975

Risk Information

Risk Factor: High


Base Score: 8.3

Temporal Score: 7.5

Vector: CVSS2#AV:A/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:F/RL:W/RC:ND


Base Score: 8.8

Vector: CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Vulnerability Information

Excluded KB Items: global_settings/supplied_logins_only

Exploit Available: true

Exploit Ease: Exploits are available

Vulnerability Publication Date: 2009/08/15

Reference Information

BID: 42947

OSVDB: 68260

EDB-ID: 14875